02 Feb 2010

Google 'to pay for security flaw updates'

Search engine Google is set to offer financial rewards to anyone who can offer insight into vulnerabilities in the company's technology.

Graham Cluley, senior technology consultant for Sophos, said payments of between $500 (£310) and $1,337 will be offered to individuals to enable the firm's technicians to address security issues before they become public knowledge and are exploited by hackers.

He commented: "It's to encourage bug hunters to report security vulnerabilities privately rather than publicly. That way, the software producer has the time to properly fix a problem, rather than [let] hackers take advantage."

Mr Cluley added this could be good news for all online users, as by addressing these flaws privately, security for all users is boosted.

According to Symantec, Windows 7 users will likely come under attack over the coming year, as will third-party social networking applications.

Furthermore, Mac and smartphone malware is set to increase, while more people will seek to sell rogue security software to consumers.