San Diego-based semiconductor company Qualcomm is joining in on a growing list of firms offering developers and security hawks an incentive to find and report vulnerabilities in its products.
The vulnerability rewards program is focusing on exposing and patching holes in its Snapdragon and LTE modem silicon and is maintained in conjunction with HackerOne, a white hat hacking coordinator. Up to $15,000 will be provided per acknowledged bug as well as, in some cases, recognition by the security sector — perhaps the CodeAuroraForum Hall of Fame.
With its acquisition of NXP Technologies to come, Qualcomm may be investing in finding synergies between the two companies’ products. Cleaning up any oversights along the way will be important, so having a robust pool of researchers participating in HackerOne’s program is an appreciable move.