Google has gained a reputation for its bug bounty program, which rewards individuals who can solve complex security issues. One of the latest challenges includes a bounty for anyone who can successfully hack the Titan M2 chip used in the newest Pixel phones. Google has outlined the security concerns it is looking to address in a recent blog post on Bug Hunters.
The company is specifically interested in identifying any potential vulnerabilities with the Titan M2 chip that may have been overlooked. To incentivize researchers, Google is offering a substantial reward to the individual who can uncover a security risk and provide a solution to mitigate it. While this task is no easy feat, the promise of a significant payout is likely to motivate many individuals to take on the challenge.
Google has introduced two bounties related to Android, both centered around the Titan M2 chip. The primary reward is a hefty $1.5 million bounty for achieving a “zero-click full chain Pixel Titan M2 compromise with persistence.” Additionally, there is a bounty of up to $750,000 for a compromise without persistence. Both rewards offer a substantial sum for successful participants.
In addition to the Android bounties, Google is also offering rewards for Chrome vulnerabilities. This includes a bounty of up to $250,000 for full-chain browser exploits on new software and hardware. There is also a specific bounty of $250,128 for successfully exploiting an allocation protected by MiraclePtr. Google indicates that this bonus reward could potentially be combined with other payouts.
Rumors suggest that Google may transition from the Titan M2 to the Titan M3 chip with the release of the Pixel 11. This evolution in security technology highlights the ongoing efforts to enhance device security and protect user data effectively.