High School Student Earns $10,000 for Discovering Bug in Google App Engine

by Developer.com Staff

The vulnerability in Google's cloud computing service could have led to data leaks.

Ezequiel Pereira, a high school student in Uruguay, said that Google has paid him $10,000 as part of its bug bounty program. Pereira went looking for vulnerabilities in Google App Engine because he was bored. Eventually, he found a way to access the servers for the cloud development service without being authenticated.

The teenager reported the issue to Google and submitted proof-of-concept evidence. Several weeks later he was surprised to receive an email from the company that informed him of the large payout.

Google pays up to $30,000 for remote code execution bugs.

View article

This article was originally published on Wednesday Aug 16th 2017
Mobile Site | Full Site