fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Google Launches Android Enterprise Bug Bounty Program

Google Launches Android Enterprise Bug Bounty Program

Google has announced the launch of its first vulnerability rewards program for Android Enterprise with bounties of up to $250,000.

This builds on the introduction of several enhancements with Android 12 to boost the platform’s overall security.

Security enhancements included with the latest Android version range from toggling off USB signaling on enterprise devices to block USB-based attacks to improved password complexity controls that provide extra protection for company data.

“And since we believe scrutiny and transparency are key to improving security, we’ve launched our first Android Enterprise Vulnerability Rewards Program,” said Rajeev Pathak, Senior Product Manager at Google. 

Also Read: PDPA Breach Penalty Singapore: How Can Businesses Prevent

“We’re offering a reward of up to $250,000 for a full exploit on a Pixel device running Android Enterprise.”

Google is working with industry leaders (e.g., Okta, Ping, and Forgerock) to move to Custom Tabs for authentication. The company considers this to be the best way to integrate authentication into Android Enterprise apps. 

The company is also introducing the Android Management API, which would provide the fastest delivery for enterprise features, with Android Enterprise Recommended requirements set by default.

Google bug bounty history

In July, Google launched a new platform to host all its vulnerability rewards programs (VRP) under the same roof.

Google also launched the Bug Hunter University, enabling bug hunters to brush up on their skills or even start a hunting learning streak.

“This new site brings all of our VRPs (Google, Android, Abuse, Chrome and Play) closer together and provides a single intake form that makes it easier for bug hunters to submit issues,” Google said at the time.

Since Google launched its first VRP over ten years ago, it has rewarded more than 2,000 security researchers from 84 different countries worldwide for reporting over 11,000 bugs.

Also Read: Data Protection Authority GDPR: Everything You Need To Know

Google says that the total bounty earned by researchers amounts to $29,357,516 since January 2010, when it launched the Chromium vulnerability reward program.

Rewards paid for qualifying bugs through Google’s VRPs range from $100 to $31,337, but the total amount can also drastically increase for exploit chains.

For instance, Alpha Lab’s Guang Gong received a $201,337 payout for a remote code execution exploit chain that could be used to compromise Pixel 3 devices, this being the biggest single bounty Google ever paid.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us