好的,我现在需要帮用户总结一下这篇文章的内容,控制在100个字以内,而且不需要用“文章内容总结”或者“这篇文章”这样的开头。直接写描述即可。 首先,我仔细阅读了文章。文章主要讲的是Google在2025年通过其漏洞奖励计划(VRP)向安全研究人员支付了超过1700万美元,总共奖励了747名研究人员。自2010年该计划启动以来,Google已经支付了超过8160万美元的漏洞赏金。去年的最高赏金是25万美元。 接下来,文章提到Google在2025年推出了针对AI系统的漏洞奖励计划,并增加了新的奖励类别。此外,他们还为开源工具OSV-SCALIBR推出了奖励计划。各个项目如Android、Chrome和Cloud的赏金情况也都有详细说明。 用户的要求是总结控制在100字以内,所以需要提炼关键信息:Google在2025年支付了超过1700万美元给747名安全研究人员,这是历史新高,并且比2024年增加了40%以上。同时,他们还推出了新的AI漏洞奖励计划和其他奖励类别。 现在把这些信息浓缩成一句话:Google在2025年通过其漏洞奖励计划向747名安全研究人员支付了超过1700万美元,并推出了针对AI系统的漏洞奖励计划和其他新奖励类别。 检查一下字数是否在限制内,并且是否涵盖了主要信息点:金额、人数、历史新高、新计划。看起来符合要求。 </think> Google在2025年通过其漏洞奖励计划向747名安全研究人员支付了超过1700万美元,并推出了针对AI系统的漏洞奖励计划和其他新奖励类别。 2026-3-12 15:30:20 Author: www.bleepingcomputer.com(查看原文) 阅读量:5 收藏
Google paid over $17 million to 747 security researchers who reported security bugs through its Vulnerability Reward Program (VRP) in 2025.
The company says it has awarded over $81.6 million in bug bounties since the first Vulnerability Reward Program went live in 2010, while the highest reward paid last year was of $250,000.
"Our VRP once again confirmed the ongoing value of engaging with the external security research community to make Google and its products safer," Google said.
"This was more evident than ever as we awarded over $17 million (an all-time high and more than 40% increase compared to 2024!) to over 700 researchers based in countries around the globe – across all of our programs."
Among last year's highlights, Google launched an AI Vulnerability Rewards Program for security researchers targeting the company's AI systems and added new reward categories to the Chrome VRP for AI bugs.
It also launched a rewards program for OSV-SCALIBR, the company's open source tool for finding security flaws in software dependencies.
In 2025, the Android and Google Devices Security Reward Program paid over $2,900,000, the Chrome security team awarded $3,716,750 to over 100 reporters, while 143 researchers were rewarded $3,574,399 during the Cloud Vulnerability Reward Program's first full year of operation.
Last year, Google awarded another $12 million to 660 security researchers who found and reported vulnerabilities throughout 2024.
The highest bug bounty of 2024 was $100,115 for a MiraclePtr Bypass, after Google more than doubled rewards for MiraclePtr bypasses to $250,128 from $100,115 when the program launched.
"Our goal remains to stay ahead of emerging threats, adapt to evolving technologies, and continue to strengthen the security posture of Google's products and services – all of which is only possible in collaboration with the external community of researchers we are so lucky to collaborate with," Google added.
"In this spirit, we'd like to extend a huge thank you to our bug hunter community for helping us make Google products and platforms more safe and secure for our users around the world – and invite researchers not yet engaged with the Vulnerability Reward Program to join us in our mission to keep Google safe."
Red Report 2026: Why Ransomware Encryption Dropped 38%
Malware is getting smarter. The Red Report 2026 reveals how new threats use math to detect sandboxes and hide in plain sight.
Download our analysis of 1.1 million malicious samples to uncover the top 10 techniques and see if your security stack is blinded.
如有侵权请联系:admin#unsafe.sh