Learnings from kCTF VRP's 42 Linux kernel exploits submissions | allinfosecnews.com

June 14, 2023, 3:59 p.m. | Kimberly Samra (noreply@blogger.com)

Google Online Security Blog security.googleblog.com

Tamás Koczka, Security Engineer

In 2020, we integrated kCTF into Google's Vulnerability Rewards Program (VRP) to support researchers evaluating the security of Google Kubernetes Engine (GKE) and the underlying Linux kernel. As the Linux kernel is a key component not just for Google, but for the Internet, we started heavily investing in this area. We extended the VRP's scope and maximum reward in 2021 (to $50k), then again in February 2022 (to $91k), and finally in August 2022 (to …

engine exploits gke google google kubernetes engine internet investing kernel key kubernetes linux linux kernel program researchers rewards security support vrp vulnerability

More from security.googleblog.com / Google Online Security Blog

I/O 2024: What’s new in Android security and privacy 2 weeks, 3 days ago | security.googleblog.com

android android security bad bad actors +11

Google and Apple deliver support for unwanted tracking alerts in Android and iOS 2 weeks, 5 days ago | security.googleblog.com

alert alerts android apple +11

Your Google Account allows you to create passkeys on your phone, computer and security keys 4 weeks, 2 days ago | security.googleblog.com

account accounts apps brand +18

Detecting browser data theft using Windows Event Logs 1 month ago | security.googleblog.com

application attackers browser can +25

How we fought bad apps and bad actors in 2023 1 month ago | security.googleblog.com

android android security apps bad +18

Accelerating incident response using generative AI 1 month ago | security.googleblog.com

automation block diana discover +21

Uncovering potential threats to your web application by leveraging security reports 1 month, 1 week ago | security.googleblog.com

api apis application browsers +15

Prevent Generative AI Data Leaks with Chrome Enterprise DLP 1 month, 2 weeks ago | security.googleblog.com

ai data businesses can chrome +23

How we built the new Find My Device network with user security and privacy in … 1 month, 3 weeks ago | security.googleblog.com

android android security crowdsourced data +13

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote

View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC

View on infosec-jobs.com