OnePlus launches bug bounty program with a reward up to $7,000

In November this year, OnePlus announced its second data breach in two years. To this end, the mobile phone manufacturer promised to launch a bug bounty project by the end of 2019 to enhance mutual trust and security of the community. Today, the company officially announced a bug bounty program, and researchers who submit bugs can receive up to $7,000 in rewards.

Interestingly, the company’s Security Response Center (OneSRC) has also set up a “Hall of Fame” to highlight the top three top contributors each month. The current bounty levels are as follows:

• Special cases: up to $7,000
• Critical: $750–$1,500
• High: $250–$750
• Medium: $100–$250
• Low: $50–$100

OnePlus said the company would judge based on the severity of the loophole and its impact on actual business. At the same time, the company has partnered with HackerOne.