{"id":2329,"date":"2024-07-16T04:48:33","date_gmt":"2024-07-16T04:48:33","guid":{"rendered":"https:\/\/tastycounter.net\/index.php\/2024\/07\/16\/google-tang-gap-5-lan-thu-lao-thuong-hacker-phat-hien-loi-bao-mat-trong-dich-vu-cua-minh\/"},"modified":"2024-07-16T04:48:33","modified_gmt":"2024-07-16T04:48:33","slug":"google-tang-gap-5-lan-thu-lao-thuong-hacker-phat-hien-loi-bao-mat-trong-dich-vu-cua-minh","status":"publish","type":"post","link":"https:\/\/tastycounter.net\/index.php\/2024\/07\/16\/google-tang-gap-5-lan-thu-lao-thuong-hacker-phat-hien-loi-bao-mat-trong-dich-vu-cua-minh\/","title":{"rendered":"Google t\u0103ng g\u1ea5p 5 l\u1ea7n th\u00f9 lao th\u01b0\u1edfng hacker ph\u00e1t hi\u1ec7n l\u1ed7i b\u1ea3o m\u1eadt trong d\u1ecbch v\u1ee5 c\u1ee7a m\u00ecnh"},"content":{"rendered":"<\/p>\n<div class=\"content-detail textview\">\n<p>Google v\u1eeba th\u00f4ng b\u00e1o s\u1ebd t\u0103ng g\u1ea5p 5 l\u1ea7n kho\u1ea3n thanh to\u00e1n cho c\u00e1c hacker t\u00ecm th\u1ea5y l\u1ed7i\/l\u1ed7 h\u1ed5ng t\u1ed3n t\u1ea1i trong h\u1ec7 th\u1ed1ng c\u0169ng nh\u01b0 \u1ee9ng d\u1ee5ng c\u1ee7a h\u00e3ng, v\u00e0 \u0111\u01b0\u1ee3c b\u00e1o c\u00e1o th\u00f4ng qua ch\u01b0\u01a1ng tr\u00ecnh ph\u1ea7n th\u01b0\u1edfng ph\u00e1t hi\u1ec7n l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt Vulnerability Reward Program. M\u1ee9c th\u00f9 lao t\u1ed1i \u0111a m\u1edbi l\u00e0 151.515 USD cho m\u1ed9t l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt, t\u00f9y theo \u0111\u1ed9 kh\u00f3 v\u00e0 m\u1ee9c \u0111\u1ed9 nghi\u00eam tr\u1ecdng.<\/p>\n<p>Gi\u1ea3i th\u00edch v\u1ec1 quy\u1ebft \u0111\u1ecbnh n\u00e0y, Google cho bi\u1ebft: \u201c<em>H\u1ec7 th\u1ed1ng c\u1ee7a ch\u00fang t\u00f4i tr\u1edf n\u00ean an to\u00e0n h\u01a1n theo th\u1eddi gian. Ch\u00fang t\u00f4i bi\u1ebft r\u1eb1ng v\u1eabn s\u1ebd c\u00f3 l\u1ed7 h\u1ed5ng t\u1ed3n t\u1ea1i, nh\u01b0ng m\u1ea5t nhi\u1ec1u c\u00f4ng s\u1ee9c h\u01a1n \u0111\u1ec3 t\u00ecm ra ch\u00fang. Do \u0111\u00f3, vi\u1ec7c n\u00e2ng cao m\u1ee9c ti\u1ec1n th\u01b0\u1edfng s\u1ebd l\u00e0 m\u1ed9t s\u1ef1 kh\u00edch l\u1ec7 ph\u00f9 h\u1ee3p cho c\u00e1c hacker<\/em>\u201d.<\/p>\n<p>M\u1ee9c ph\u1ea7n th\u01b0\u1edfng cao nh\u1ea5t m\u1edbi l\u00e0 &#8220;101.010 USD cho l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng nh\u01b0 th\u1ef1c thi m\u00e3 t\u1eeb xa (RCE) trong c\u00e1c s\u1ea3n ph\u1ea9m ph\u1ed5 bi\u1ebfn c\u1ee7a Google, v\u1edbi m\u1ee9c s\u1eeda \u0111\u1ed5i 1,5 l\u1ea7n \u0111\u01b0\u1ee3c \u00e1p d\u1ee5ng cho ch\u1ea5t l\u01b0\u1ee3ng b\u00e1o c\u00e1o \u0111\u1eb7c bi\u1ec7t, t\u01b0\u01a1ng \u0111\u01b0\u01a1ng 151.515 USD)&#8221;. L\u01b0u \u00fd r\u1eb1ng ch\u1ec9 c\u00e1c b\u00e1o c\u00e1o v\u1ec1 l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt \u0111\u01b0\u1ee3c g\u1eedi b\u1eaft \u0111\u1ea7u t\u1eeb ng\u00e0y 11 th\u00e1ng 7 m\u1edbi \u0111\u1ee7 \u0111i\u1ec1u ki\u1ec7n \u0111\u01b0\u1ee3c thanh to\u00e1n theo m\u1ee9c th\u01b0\u1edfng m\u1edbi.<\/p>\n<p>Ngo\u00e0i vi\u1ec7c \u0111\u01b0a ra c\u00e1c kho\u1ea3n thanh to\u00e1n cao h\u01a1n, Google g\u1ea7n \u0111\u00e2y c\u0169ng \u0111\u00e3 m\u1edf r\u1ed9ng c\u00e1c t\u00f9y ch\u1ecdn thanh to\u00e1n, bao g\u1ed3m kh\u1ea3 n\u0103ng nh\u1eadn thanh to\u00e1n th\u00f4ng qua Bugcrowd. Ph\u1ea7n Reward Amounts \u0111\u01b0\u1ee3c c\u1eadp nh\u1eadt trong b\u1ed9 quy t\u1eafc Google VRP s\u1ebd cung c\u1ea5p th\u00eam th\u00f4ng tin v\u1ec1 nh\u1eefng thay \u0111\u1ed5i c\u1ee7a Google \u0111\u1ed1i v\u1edbi s\u1ed1 ti\u1ec1n th\u01b0\u1edfng v\u00e0 c\u01a1 c\u1ea5u thanh to\u00e1n m\u1edbi.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" style=\"margin-left:auto;margin-right:auto\" src=\"https:\/\/st.quantrimang.com\/photos\/image\/holder.png\" alt=\"Google t\u0103ng g\u1ea5p 5 l\u1ea7n th\u00f9 lao th\u01b0\u1edfng hacker ph\u00e1t hi\u1ec7n l\u1ed7i b\u1ea3o m\u1eadt trong d\u1ecbch v\u1ee5 c\u1ee7a m\u00ecnh \" width=\"698\" height=\"159\" class=\"lazy\" data-src=\"https:\/\/st.quantrimang.com\/photos\/image\/2024\/07\/15\/google-tang-thu-lao-thuong-hacker-phat-hien-loi-bao-mat1.jpg\"><\/p>\n<div id=\"articleads\" class=\"adbox adsense in-article\"><ins class=\"adsbygoogle\" style=\"text-align:center\" data-ad-format=\"fluid\" data-ad-layout=\"in-article\" data-ad-client=\"ca-pub-9275417305531302\" data-ad-slot=\"2079243249\"><\/ins><\/div>\n<p>Tu\u1ea7n tr\u01b0\u1edbc, Google \u0111\u00e3 ra m\u1eaft kvmCTF, m\u1ed9t VRP m\u1edbi \u0111\u01b0\u1ee3c c\u00f4ng b\u1ed1 v\u00e0o th\u00e1ng 10 n\u0103m 2023 nh\u1eb1m c\u1ea3i thi\u1ec7n t\u00ednh b\u1ea3o m\u1eadt c\u1ee7a tr\u00ecnh \u1ea3o h\u00f3a Kernel-based Virtual Machine (KVM). kvmCTF t\u1eadp trung v\u00e0o c\u00e1c l\u1ed7i c\u00f3 th\u1ec3 truy c\u1eadp \u0111\u01b0\u1ee3c VM trong b\u1ed9 \u1ea3o h\u00f3a KVM, v\u00e0 treo gi\u1ea3i th\u01b0\u1edfng 250.000 USD cho nh\u1eefng tr\u01b0\u1eddng h\u1ee3p khai tri\u1ec7t \u0111\u1ec3.<\/p>\n<p>N\u0103m ngo\u00e1i, c\u00f4ng ty c\u0169ng \u0111\u00e3 t\u0103ng g\u1ea5p ba m\u1ee9c th\u01b0\u1edfng cho c\u00e1c tr\u01b0\u1eddng h\u1ee3p khai th\u00e1c th\u00e0nh c\u00f4ng chu\u1ed7i l\u1ed7 h\u1ed5ng Chrome sandbox cho \u0111\u1ebfn ng\u00e0y 1 th\u00e1ng 12 n\u0103m 2023.<\/p>\n<p>K\u1ec3 t\u1eeb khi Ch\u01b0\u01a1ng tr\u00ecnh Ph\u1ea7n th\u01b0\u1edfng ph\u00e1t hi\u1ec7n L\u1ed7 h\u1ed5ng (Vulnerability Reward Program &#8211; VRP) \u0111\u01b0\u1ee3c tri\u1ec3n khai v\u00e0o n\u0103m 2010, Google \u0111\u00e3 tr\u1ea3 h\u01a1n 50 tri\u1ec7u USD ti\u1ec1n th\u01b0\u1edfng cho c\u00e1c nh\u00e0 nghi\u00ean c\u1ee9u b\u1ea3o m\u1eadt, t\u01b0\u01a1ng \u1ee9ng v\u1edbi h\u01a1n 15.000 l\u1ed7 h\u1ed5ng \u0111\u01b0\u1ee3c b\u00e1o c\u00e1o.<\/p>\n<p>Ch\u1ec9 ri\u00eang n\u0103m ngo\u00e1i, Google \u0111\u00e3 tr\u1ea3 10 tri\u1ec7u USD, trong \u0111\u00f3 ph\u1ea7n th\u01b0\u1edfng cao nh\u1ea5t \u0111\u01b0\u1ee3c trao cho m\u1ed9t tr\u01b0\u1eddng h\u1ee3p ri\u00eang l\u1ebb l\u00e0 113.337 USD.<\/p>\n<p>M\u1ee9c th\u01b0\u1edfng VRP cao nh\u1ea5t t\u1eeb \u200b\u200btr\u01b0\u1edbc \u0111\u1ebfn nay l\u00e0 605.000 USD, \u0111\u01b0\u1ee3c tr\u1ea3 cho nh\u00e0 nghi\u00ean c\u1ee9u b\u1ea3o m\u1eadt c\u00f3 nickname gzobqq v\u00e0o n\u0103m 2022, v\u1edbi th\u00e0nh t\u00edch ph\u00e1t hi\u1ec7n m\u1ed9t lo\u1ea1t n\u0103m l\u1ed7i b\u1ea3o m\u1eadt trong chu\u1ed7i khai th\u00e1c Android. C\u0169ng ch\u00ednh hacker n\u00e0y \u0111\u00e3 b\u00e1o c\u00e1o m\u1ed9t chu\u1ed7i khai th\u00e1c Android quan tr\u1ecdng kh\u00e1c v\u00e0o n\u0103m 2021, ki\u1ebfm \u0111\u01b0\u1ee3c kho\u1ea3n th\u01b0\u1edfng tr\u1ecb gi\u00e1 157.000 USD.<\/p>\n<p>Ch\u01b0\u01a1ng tr\u00ecnh th\u01b0\u1edfng ti\u1ec1n cho vi\u1ec7c ph\u00e1t hi\u1ec7n l\u1ed7i b\u1ea3o m\u1eadt l\u00e0 m\u1ed9t \u00fd t\u01b0\u1edfng tuy\u1ec7t v\u1eddi, g\u00f3p ph\u1ea7n gi\u00fap nh\u00e0 cung c\u1ea5p d\u1ecbch v\u1ee5 t\u1eadn d\u1ee5ng ngu\u1ed3n l\u1ef1c t\u1eeb ch\u00ednh c\u1ed9ng \u0111\u1ed3ng \u0111\u1ec3 ho\u00e0n thi\u1ec7n c\u00e1c s\u1ea3n ph\u1ea9m c\u1ee7a m\u00ecnh. \u0110\u00e2y l\u00e0 m\u1ed9t ki\u1ec3u h\u1ee3p t\u00e1c \u0111\u00f4i b\u00ean c\u00f9ng c\u00f3 l\u1ee3i, kh\u00f4ng ch\u1ec9 gi\u00fap th\u00fac \u0111\u1ea9y c\u00e1c c\u00e1 nh\u00e2n c\u0169ng nh\u01b0 nh\u00f3m hacker kh\u00f4ng ch\u1ec9 t\u00ecm ra \u0111\u01b0\u1ee3c l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt, m\u00e0 c\u00f2n ti\u1ebft l\u1ed9 c\u00e1ch th\u1ee9c khai th\u00e1c ho\u1eb7c kh\u1eafc ph\u1ee5c c\u00e1c l\u1ed7 h\u1ed5ng n\u00e0y m\u1ed9t c\u00e1ch \u0111\u00fang \u0111\u1eafn, thay v\u00ec l\u1ee3i d\u1ee5ng ch\u00fang \u0111\u1ec3 tr\u1ee5c l\u1ee3i c\u00e1 nh\u00e2n, vi ph\u1ea1m ph\u00e1p lu\u1eadt hay t\u1ec7 h\u01a1n l\u00e0 rao b\u00e1n cho c\u00e1c t\u1ed5 ch\u1ee9c \u0111en.<\/p>\n<p>Nh\u00ecn chung, chi ph\u00ed b\u1ecf ra trong vi\u1ec7c khen th\u01b0\u1edfng c\u00e1c nh\u00e0 nghi\u00ean c\u1ee9u b\u1ea3o m\u1eadt th\u01b0\u1eddng ch\u1eb3ng l\u00e0 g\u00ec so v\u1edbi thi\u1ec7t h\u1ea1i c\u0169ng nh\u01b0 s\u1ed1 ti\u1ec1n ph\u1ea3i b\u1ecf ra \u0111\u1ec3 kh\u1eafc ph\u1ee5c h\u1eadu qu\u1ea3 m\u00e0 l\u1ed7 h\u1ed5ng \u0111\u00f3 g\u00e2y ra.<\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Google v\u1eeba th\u00f4ng b\u00e1o s\u1ebd t\u0103ng g\u1ea5p 5 l\u1ea7n kho\u1ea3n thanh to\u00e1n cho c\u00e1c hacker t\u00ecm th\u1ea5y l\u1ed7i\/l\u1ed7 h\u1ed5ng t\u1ed3n t\u1ea1i trong h\u1ec7 th\u1ed1ng c\u0169ng nh\u01b0 \u1ee9ng d\u1ee5ng c\u1ee7a h\u00e3ng, v\u00e0 \u0111\u01b0\u1ee3c b\u00e1o c\u00e1o th\u00f4ng qua ch\u01b0\u01a1ng tr\u00ecnh ph\u1ea7n th\u01b0\u1edfng ph\u00e1t hi\u1ec7n l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt Vulnerability Reward Program. M\u1ee9c th\u00f9 lao t\u1ed1i \u0111a m\u1edbi [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-2329","post","type-post","status-publish","format-standard","hentry","category-khong-phan-loai"],"_links":{"self":[{"href":"https:\/\/tastycounter.net\/index.php\/wp-json\/wp\/v2\/posts\/2329","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/tastycounter.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/tastycounter.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/tastycounter.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/tastycounter.net\/index.php\/wp-json\/wp\/v2\/comments?post=2329"}],"version-history":[{"count":0,"href":"https:\/\/tastycounter.net\/index.php\/wp-json\/wp\/v2\/posts\/2329\/revisions"}],"wp:attachment":[{"href":"https:\/\/tastycounter.net\/index.php\/wp-json\/wp\/v2\/media?parent=2329"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/tastycounter.net\/index.php\/wp-json\/wp\/v2\/categories?post=2329"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/tastycounter.net\/index.php\/wp-json\/wp\/v2\/tags?post=2329"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}