• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • January 26th, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Technology News

Tor Public Bug Bounty Program: Earn Up To $4000

July 22nd, 2017 Waqas Security, Technology News 0 comments
Tor Public Bug Bounty Program: Earn Up To $4000
Share on FacebookShare on Twitter

There is some excellent news for researchers and white hat hackers out there. On Thursday the popular anonymity network Tor project launched its public bug bounty program. This program will help researchers earn thousands of dollars since up to $4000 are being offered for finding out vulnerabilities.

The program has been launched on the HackerOne platform with the support of Open Technology Fund and aims at providing an open space for researchers to find out low, medium and high severity flaws. The developer of Tor browser Georg Koppen states:

[irp posts=”54117″ name=”Google will Now Pay Hackers $200,000 for Reporting Bugs in Android”]

“Tor users around the globe, including human rights defenders, activists, lawyers, and researchers, rely on the safety and security of our software to be anonymous online. Help us protect them and keep them safe from surveillance, tracking, and attack.”

The organization is looking to identify flaws in Tor Browser and Tor network daemon. Researchers are required to find flaws involving remote code execution, attack methods that might help in obtaining crypto data on clients or relays, local privilege escalation and illegal access to user data.

The prize money offered per flaw is certainly the real attraction. The organization is offering an amount between $2000 and $4000 for high severity bugs and between $500 and $2000 for medium severity flaws. If the vulnerability affects third-party libraries used by the Tor Project will also be rewarded with $500 to $2000 depending on severity. Low severity issues will fetch a reward of $100 at least, and if the bug is less severe, researchers can expect to receive souvenirs like T-shirts, stickers and get featured on Tor’s “hall of fame.”

Examples of vulnerabilities for each of these categories are also available with CVE references on the Tor Project’s official bug bounty page. It must be noted that third-party libraries like OpenSSL covered in other bug bounty programs are excluded from this one.

In January 2016, the Tor Project launched a private program where researchers identified three denial-of-service (DoS) vulnerabilities, one infinite loop issue, and two out-of-bounds (OOB) flaws. Along with that, four memory corruption flaws called “edge-case” were also identified.

[irp posts=”37051″ name=”Tor Anonymity: Things NOT To Do While Using Tor”]

  • Tags
  • Anonymity
  • Bug Bounty
  • DDOS
  • hacking
  • internet
  • security
  • Technology
  • Tor
Facebook Twitter LinkedIn Pinterest
Previous article Fake Adobe Flash Player App Infects Android Devices with Banking Malware
Next article Google' 'Play Protect' Ensures Maximum Security For Android Devices
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related Posts
TikTok vulnerability allowed hackers to access users' phone numbers

TikTok vulnerability allowed hackers to access users' phone numbers

Watch out as new Android malware spreads through WhatsApp

Watch out as new Android malware spreads through WhatsApp

SonicWall hacked after 0-day flaws exploited by hackers

SonicWall hacked after 0-day flaws exploited by hackers

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
TikTok vulnerability allowed hackers to access users' phone numbers
Security

TikTok vulnerability allowed hackers to access users' phone numbers

40
Why you should never use free a VPN
Drones

Why you should never use free a VPN

27
Watch out as new Android malware spreads through WhatsApp
Security

Watch out as new Android malware spreads through WhatsApp

214

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us