Facebook Launches Bug Bounty Program to Reward those who Report Bugs in Third-Party Apps. Now the people can report the vulnerabilities in third-party apps and websites that involve improper exposure of Facebook user access tokens. As a return, Facebook will reward them with cash prizes.
Facebook Launches Bug Bounty Program with a minimum reward of $500 per vulnerable app or website
Access tokens allow people to log into another app using Facebook. The company uniquely generates thee tokens for the specific person and app. The user decides what information the token and app can access as well as what actions to take. If exposed, a token can potentially be misused, based on the permissions set by the user. Now Facebook asked the researchers to report these important issues. Facebook will try to resolve these issues.
Facebook will reward with a minimum reward of $500 per vulnerable app or website. Moreover, Facebook will review all legitimate reports and respond as quickly as possible. If the company confirm that the leaked access tokens, Facebook will work with the app or website developer to fix their code. Apps that do not comply with Facebook request promptly will be suspended from the platform until the issue has been addressed and a security review has been conducted.
For Terms and Conditions Click Here