Samsung has improved its Mobile Security Rewards Program by increasing the maximum reward amount to $1 million for security vulnerability reports from outside security experts. This change aims to encourage more collaboration and openness in mobile security, showing Samsung’s goal of keeping user data safe.
Since its launch in 2017, the program has introduced a new system for classifying security risks with Samsung Mobile Security Risk Classification. This system now offers clearer details about different types of vulnerabilities
Moreover, it includes new factors like the ability to lower a threat’s severity and a classification for threats considered to be minimal risks. Vulnerabilities are grouped into five levels – Critical, High, Moderate, Low, and Ineligible, which helps security researchers understand how serious each threat is.
The program applies to all Samsung mobile devices that receive monthly, quarterly, and biannual security updates. It also rewards reports of potential security issues in the latest Samsung Galaxy services, such as Bixby, Samsung Account, and Samsung Wallet, among others.
Samsung also commits to providing up to seven years of security updates for its mobile devices. The updated rewards program includes a special initiative called the Important Scenario Vulnerability Program, which addresses serious security issues, such as unauthorized access to data and harmful code execution.
In August 2024, Samsung released its first Annual Rewards Program Report to highlight its success since the program began. In 2023 alone, Samsung awarded over $800,000 to 113 researchers, with total payouts exceeding $4 million. This Mobile Security Rewards Program is effective immediately.
