Skip to main content

Qualcomm Launches Bug Bounty Program

  • November 17th , 2016

Are you a fan of drones, droids, and VR? Then you’re a fan of Qualcomm. Qualcomm is the world leader in 3G and 4G technologies helping power your smartphones, among other things, and today we’re excited to announce the launch of their invite-only bug bounty program on HackerOne.

Qualcomm plans to reward hackers up to $15,000 for improving the security of the Qualcomm Snapdragon family of processors, LTE modems and related technologies.

For additional details on Qualcomm’s invitation only program check out their security page and their official press release below.

Qualcomm Announces Launch of Bounty Program, offering up to $15,000 USD for the Discovery of Vulnerabilities

First announced vulnerability rewards program to be offered by a major semiconductor vendor; will be administered by HackerOne

SAN DIEGO — November 17, 2016 — Qualcomm Incorporated (NASDAQ: QCOM) today announced that its subsidiary, Qualcomm Technologies, Inc. (QTI), is launching its vulnerability rewards program designed to expand collaboration with invited white hat hackers who improve the security of the Qualcomm® SnapdragonTM family of processors, LTE modems and related technologies. The program is the first of its kind to be announced by a major silicon vendor, and will be administered in collaboration with vulnerability coordination platform HackerOne, offering rewards of up to $15,000 USD per vulnerability as well as recognition in either the QTI Product Security or the Code Aurora Forum Hall of Fame, depending on the nature of the submission.

“We have always been proud of our collaborative relationship with the security research community. Over the years, researchers have helped us improve the security of our products by reporting vulnerabilities directly to us,” said Alex Gantman, vice president of engineering, Qualcomm Technologies. “Although the vast majority of security improvements in our products come from our internal efforts, a vulnerability rewards program represents a meaningful part of our broader security efforts.”

“The most security conscious organizations embrace the hacker community's critical role in a comprehensive security strategy,” said Alex Rice, CTO, HackerOne. “With Qualcomm Technologies’ vulnerability rewards program they will continue to build vital relationships with the external security researcher community and supplement the great work their internal security team is doing.”

Over 40 security researchers who have made vulnerability disclosures in the past will be invited to initially participate. The program will be administered by HackerOne and participation details are available at https://hackerone.com/qualcomm. The vulnerability rewards program is effective immediately.

Recent articles

The best security initiative you can take in 2017

As CEO of HackerOne, I am thrilled to confirm that, as part of our rapid growth, we have strengthened our…

Bug Bounties Help Keepsafe Secure The Data of 50 Million Consumers

Keepsafe is on a mission to help us keep our private lives as they should be - private. Bug bounties are a big…

Hack The Army Results Are In

The most ambitious Federal bug bounty program to date, Hack the Army, targeted operationally significant…