$10,000 for hacking HP printers: First bug bounty program for printer security
HP announced a different kind of bug bounty – the “first of its kind” bug bounty program for printers.
Before you get to hacking printers to find a serious vulnerability and make $10,000, you should know that the “industry’s first print security bug bounty program” is private. HP invited specific researchers to the program; honestly, that’s a bit of an excitement deflator because instead of anyone with the skills being able to find and report printer bugs, only a little more than 30 researchers get a shot it.
HP partnered with the crowdsourced security Bugcrowd platform and is offering between $500 and $10,000 per bug; Bugcrowd will verify the reported vulnerability and award a payout based on the severity of the flaw. Citing Bugcrowd’s 2018 State of Bug Bounty Report, HP noted that “the top emerging attackers are focused on endpoint devices, and the total print vulnerabilities across the industry have increased 21% during the past year.”