PlayStation has recently announced a collaboration with HackerOne. The program will allow users to report PlayStation bugs and receive bounties- up to $50,000!
PlayStation has recently announced their new PlayStation Bug Bounty program. The program is in collaboration with HackerOne. PlayStation Bug Bounty will allow users to report any bugs or issues that they find with PlayStation products. The users will then receive a bounty for their find. Depending on the bug, a bounty could go up to $50,000.
HackerOne is a cybersecurity company that has a unique, crowd-sourced business model. HackerOne allows everyday people to report security issues to receive a bounty. The business model reduces the need for excess employees and rewards communities for reporting security issues instead of exploiting them.
In PlayStation’s partnership with HackerOne, they have adopted a similar model. PlayStation users will report any security issues or bugs on the website. PlayStation will then decide if it will award a bounty. If PlayStation awards a bounty, it will rate the severity of the issue. Depending on the severity, PlayStation will send a payment between $100-50,000. PlayStation Bug Bounty boasts an average report response after just three hours and payment after an average of five days.
As of now, PlayStation Bug Bounty has resolved 90 unique reports from over 50 users. Total, there have been over 900 reports, with the average bounty at $400. The program has also paid out nearly $175,000 in total for bounties.
Unfortunately, PlayStation Bug Bounty only applies to PlayStation 4 and Playstation Network. Bugs for PlayStation 1, PlayStation 2, PlayStation 3, PS Vita, PSP, and any unofficial hardware or software will not result in a bounty. The program also does not accept reports about corporate IT structure. Any publicly available issues will also not apply.
For the PlayStation 4, HackerOne will accept reports regarding any of the following:
- official hardware
- official software
- official accessories
HackerOne will also accept issues with domains that end with:
It also includes the following websites:
The Bug Bounty Program should drastically increase the safety of PlayStation products. It will also encourage regular users to report bugs or security issues and reward them for doing so. What do you think of the program? Is it a good move? Let me know in the comments! Also, don’t forget to subscribe to the Aroono newsletter for updated content!