Top Bug Bounty Programs 2021
1) Intel
Intel’s bounty program mainly targets the company’s hardware, firmware, and software.
Limitations:It does not include recent acquisitions, the company’s web infrastructure, third-party products.
Minimum Payout:$500
Maximum Payout:$31,000
Bounty Link: https://security-center.intel.com/BugBountyProgram.aspx
2) Yahoo
Yahoo has its dedicated team that accepts vulnerability reports from security researchers and ethical hackers.
Limitations:The Company does not offer any reward for finding bugs in yahoo.net.
Minimum Payout:No limit
Maximum Payout:$17,000
Bounty Link:https://safety.yahoo.com/Security/REPORTING-ISSUES.html
3) Snapchat
Snapchat security team reviews all vulnerability reports and acts upon them by responsible disclosure. The company, we will acknowledge your submission within 30 days.
Minimum Payout:$2000.
Maximum Payout:$15,000.
Bounty Link:https://support.snapchat.com/en-US/i-need-help
4) Apple
When Apple first launched its bug bounty program it allowed just 24 security researchers. The framework then expanded to include more bug bounty hunters.
The company will pay $100,000 to those who can extract data protected by Apple’s Secure Enclave technology.
Minimum Payout:No limit
Maximum payout:$200,000
Bounty Link: https://support.apple.com/en-au/HT201220
5) Dropbox
Dropbox bounty program allows security researchers to report bugs and vulnerabilities on the third party service.
Minimum Payout:$12,167.
Maximum Payout:$32,768.
Bounty Link: https://help.dropbox.com/accounts-billing/security/how-security-works
6) Facebook
Under Facebook’s bug bounty program users can report a security issue on Facebook, Instagram, Atlas, WhatsApp, etc.
Limitations:There are a few security issues that the social networking platform considers out-of-bounds.
Minimum Payout:$500
Maximum Payout:No limit
Bounty Link: https://www.facebook.com/whitehat/
7) Google
Every content in the .google.com, .blogger, youtube.com are open for Google’s vulnerability rewards program.
Limitations:This bounty program only covers design and implementation issues.
Minimum Payout:$300
Maximum Payout:$32,000
Bounty Link: https://www.google.com/about/appsecurity/reward-program/
8) Quora
Quora offers Bug Bounty program to all users and researchers to find and report security vulnerabilities.
Minimum Payout:$100
Maximum Payout:$7000.
Bounty Link: https://www.quora.com/q/quoraengineering/Security-Bug-Bounty-Program
9) Mozilla
Mozilla rewards for vulnerability discoveries by ethical hackers and security researchers.
Limitations:The bounty is offered only for bugs in Mozilla services, such as Firefox, Thunderbird and other related applications and services.
Minimum Payout:$500.
Maximum Payout:$5000.
Bounty Link: https://www.mozilla.org/en-US/security/bug-bounty/
10) Cisco
Cisco encourages individuals or organization that are experiencing a product security issue to report them to the company.
Minimum Payout:$100.
Maximum Payout:$3,000
Bounty Link: https://tools.cisco.com/security/center/resources/security_vulnerability_policy.html
