AMD has taken a major step forward in cybersecurity by launching a new public bug bounty program, offering substantial rewards to participants who uncover security vulnerabilities. Previously, AMD’s bug bounty efforts were restricted to a select group of security researchers through a private program. Now, with the introduction of the public program, anyone with a keen eye for bugs can report their findings and potentially earn significant payouts.
Partnering with Intigriti, a renowned crowdsourced security services provider, AMD aims to broaden its security net. Researchers can now report bugs via the Intigriti platform and earn rewards ranging from $500 to $30,000 per bug, depending on the severity and type of vulnerability discovered.
Here’s a breakdown of the rewards:
- Software Bugs: $500 for low-severity, $1,500 for medium-severity, $5,000 for high-severity, and $10,000 for critical-severity.
- Firmware Bugs: $1,000 for low-severity, $3,000 for medium-severity, $9,000 for high-severity, and $15,000 for critical-severity.
- Hardware Bugs: $2,000 for low-severity, $5,000 for medium-severity, $15,000 for high-severity, and $30,000 for critical-severity.
This initiative comes in the wake of notable security challenges faced by AMD, including issues with Ryzen 7000 processors, BIOS vulnerabilities across multiple generations, and overclocking limits on RX 7900 GRE GPUs. By tapping into the wider cybersecurity community, AMD hopes to identify and mitigate potential threats before they cause significant damage.
Details for AMD Bug Bounty program here.
{{user}} {{datetime}}
{{text}}