"Meta on Tuesday said it has made available a tool called WhatsApp Research Proxy to some of its long-time bug bounty researchers to help improve the program and more effectively research the messaging platform's network protocol. The idea is to make it easier to delve into WhatsApp-specific technologies as the application continues to be a lucrative attack surface for state-sponsored actors and commercial spyware vendors."
"The development comes as the social media giant said it has awarded more than $25 million in bug bounties to over 1,400 researchers from 88 countries in the last 15 years, out of which more than $4 million were paid out this year alone for almost 800 valid reports. In all, Meta said it received around 13,000 submissions. Some of the notable bug discoveries included an incomplete validation bug in WhatsApp prior to v2.25.23.73,"
Meta made the WhatsApp Research Proxy tool available to select long-time bug bounty researchers to facilitate deeper study of WhatsApp’s network protocol. The initiative aims to ease research into WhatsApp-specific technologies amid persistent targeting by state-sponsored actors and commercial spyware vendors. Meta launched a pilot inviting research teams to focus on platform abuse with engineering and tooling support to lower barriers for academics and researchers new to bug bounties. Meta reported awarding over $25 million in bug bounties to more than 1,400 researchers across 88 countries over 15 years, paying $4M+ this year for nearly 800 valid reports from about 13,000 submissions.
Read at The Hacker News
Unable to calculate read time
Collection
[
|
...
]