Facebook is the newest addition to a list of companies that are offering rewards to users with information on bugs, malware or other website flaws.
Facebook announced recently a $500 bounty to anyone with information on bugs found on the site, such as XSS or cross-site scripting errors. Depending on the bug, the reward amount may increase.
According to the social networking giant, those eligible for the bounty must adhere to the company’s responsible disclosure policy, which requires that those with information give Facebook a reasonable amount of time to respond to the report before publicizing any information. It also asks that users make “good faith” efforts to avoid privacy violations, destruction of data and interruption or degradation of its service during research.
Additionally, to be considered eligible, researchers much be the first to disclose the bug, report a bug that could compromise the integrity or privacy of Facebook user data and reside in a country not under any current U.S. sanctions such as North Korea, Libya or Cuba.
Facebook’s announcement follows other companies’ reward campaigns aimed at picking the minds of its users. Most recently, Microsoft announced it is offering a $250,000 reward for any information leading to the identification, arrest and conviction of those involved with the Rustock spamming botnet.