"Meta's Bug Bounty Program Shows $2m Awarded in 2022"

Social media giant Meta has recently awarded a total of $2m as part of its bug bounty program.  The total amount since the program's establishment in 2011 is reportedly $16m.  Meta stated that they received hundreds of impactful bug reports in 2022 from researchers all over the world that have helped to make our community more secure.  Since 2011, Meta noted that it had received more than 170,000 reports, of which over 8500 were awarded a bounty.  The numbers for 2022 alone were 10,000 reports, with issued rewards on more than 750.  Meta also recently released new payout guidelines for mobile remote code execution (RCE) bugs and account takeover (ATO) and two-factor authentication (2FA) bypass vulnerabilities.  They range as high as $130,000 for ATO reports and $300,000 for mobile RCE bugs.

Infosecurity reports: "Meta's Bug Bounty Program Shows $2m Awarded in 2022"