I don’t know why, but I was disappointed they didn’t disclose how much the rewar... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

jalk on May 26, 2023 | parent | context | favorite | on: GCP CloudSQL Vulnerability Leads to Internal Conta...

I don’t know why, but I was disappointed they didn’t disclose how much the reward was.

belter on May 26, 2023 | [–]

Per their published table, not more than $13,337

https://bughunters.google.com/about/rules/6625378258649088/g...

londons_explore on May 26, 2023 | [–]

Hopefully not very much... They were 'caught' by googles security team.

Who knows - if Google hadn't detected the intrusion, this attack might be on the black market by now.

tptacek on May 26, 2023 | [–]

Probably not. There's no coherent market for serverside vulnerabilities of any sort.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact