OnePlus opens its own paid security-incident bounty program

OnePlus has opened its OneSRC. (Source: OnePlus)

The OnePlus Security Response Center (or OneSRC) is this OEM's first bug-bounty initiative. It offers cash incentives (in USD) to report deficiencies in its own software. They start from US$50, but go into 3 to 4 figures for the more severe vulnerabilities.

Deirdre O Donnell, Published 12/20/2019

OnePlus has come a long way since it started up with a single phone 6 years ago. Now, it has unveiled its own paid bug-hunting initiative, OneSRC. This program, like those associated with other OEMs, offers cash in exchange for reports of unique vulnerabilities in its own software products.

Accordingly, this new scheme offers cash rewards for the discovery of security defects in code owned by OnePlus. The criteria under which reports can be filed include that they relate specifically to the incident types in question, and have never been documented elsewhere.

Admittedly, this OEM's new bounty program is not quite as extensive as those associated with other companies, such as Google's Android Security Rewards Program, which offers up to US$1000000 for the discovery of potential severe exploits that affect the Titan M security chipset. OnePlus' rewards, on the other hand, range from US$50 (for "low"-rated bugs) and go through $750-1000 (for "critical" incidents) all the way up to $7000 (for "special cases").

Source(s)

OnePlus

A OnePlus designer shows off what the 6 could have looked like 01/19/2020

The OnePlus 8 series may look like this. (Source: OnLeaks/91Mobiles)

The OnePlus 8 may launch as a Verizon 5G device in the US 01/12/2020

The OnePlus Concept One. (Source: OnePlus)

OnePlus unveils the Concept One, its first "Electronic CMF" phone 01/07/2020

A Concept One schematic. (Source: OnePlus)

OnePlus Concept One: looks like it's not foldable 01/04/2020

10.3.0 offers a stable(er) Android 10 experience (Image source: Gearbest)

OxygenOS 10.3.0 update promises better camera performance for Oneplus 6, 6T owners 12/30/2019

The revamped bounty is open to all, with bigger rewards (Image source: Panda Security)

Apple Security Bounty revamped: now invitation-free, with bigger rewards 12/21/2019

Facebook continues to struggle with security vulnerabilities (Image source: Microsoft)

Data breach at Facebook left nearly 270 million usernames, phone records visible 12/21/2019

The OnePlus 6 and 6T have received a flurry of updates recently. (Image source: OnePlus)

The OnePlus 6 and 6T receive display notch hiding feature and other fixes in latest stable and beta builds 12/19/2019

An up-to-date OnePlus 8 render. (Source: OnLeaks/CashKaro)

The OnePlus 8 Pro's latest leak points to a 120Hz display and 50W charging 12/19/2019

The Concept One may look nothing like the average OnePlus phone. (Source: OnePlus)

OnePlus will unveil its first ever concept phone at CES 2020 12/17/2019

A render for the OnePlus 8. (Source: Android Authority)

OnePlus 8: new leak paints a picture of a real crowd-pleaser 12/16/2019

OnePlus teases a CES 2020 "special event" 12/13/2019

The Redmi Note 8 Pro offers best-in-class performance. (Source: AndroidPit)

November AnTuTu rankings show just how far ahead of the competition the Redmi Note 8 Pro is 12/11/2019

The new OnePlus TV remote control. (Source: OnePlus)

OnePlus announces a new, Netflix-buttoned remote for its smart TV 12/09/2019

The Android 10 rollout has been swifter than usual. (Source: CNET)

It looks like Android OEMs are getting better with OS updates 12/08/2019

Loading Comments

Comment on this article

The Redmi K20 and K20 Pro receive a...

Motorola postpones the Razr launch ...

Deirdre O Donnell - Senior Tech Writer - 7341 articles published on Notebookcheck since 2018

I became a professional writer and editor shortly after graduation. My degrees are in biomedical sciences; however, they led to some experience in the biotech area, which convinced me of its potential to revolutionize our health, environment and lives in general. This developed into an all-consuming interest in more aspects of tech over time: I can never write enough on the latest electronics, gadgets and innovations. My other interests include imaging, astronomy, and streaming all the things. Oh, and coffee.

contact me via: LinkedIn

Please share our article, every link counts!

> Expert Reviews and News on Laptops, Smartphones and Tech Innovations > News > News Archive > Newsarchive 2019 12 > OnePlus opens its own paid security-incident bounty program

Deirdre O Donnell, 2019-12-20 (Update: 2019-12-20)

OnePlus opens its own paid security-incident bounty program

Source(s)

Related Articles