It’s been pretty difficult last couple of weeks for Intel due to the Spectre and Meltdown vulnerabilities. In an attempt to find such issues more quickly in future, the company has recently expanded its bug bounty program to more researchers.
In case you have followed news related to Intel, then you might already know that the program was launched in March earlier last year. Although at the time the program was invitation only, now, security researchers with HackerOne accounts which meet eligibility requirements can inform the chip manufacturer about any vulnerabilities they can find for its different products. At the moment, the program covers different products including CPUs, chipsets, FPGAs, SSDs, device drivers, and applications.
In addition to this, the company has also decided to increase its maximum bug bounty for reports. According to the company, anything with a maximum critical rating will give the finder up to $250,000.
Talking about the latest changes, Intel’s vice president and general manager of platform security, Rick Echevarria stated, “We believe these changes will enable us to more broadly engage the security research community, and provide better incentives for coordinated response and disclosure that help protect our customers and their data.”
This latest news comes as few days earlier, Intel’s CEO Brian Krzanich revealed that all of the processors coming later this year will be free from Spectre and Meltdown vulnerabilities.