Left behind by many other technology companies, Intel still introduced a bug search program in its products, a reward in which it can reach the amount of $ 30,000. The program runs on the HackerOne platform, where users can search for vulnerabilities in software and hardware, firmware and t.

As usual in such programs, the more dangerous the vulnerability is found, the more the company will pay it to the discoverer. Intel takes into account several factors, determining the degree of danger of vulnerabilities. First use the CVSS 3 calculator. 0 to determine the base estimate, then adjustments are made based on the security model of a particular product.

For example, a critical vulnerability in the software of Intel Software can bring its discoverer up to $ 7,500, and a vulnerability in the firmware will bring up to $ 10,000.

The main award can be provided by Intel hardware products, where the upper limit is $ 30,000.

Intel Security products do not fall under this program, as are third-party products and open source applications. The same applies to Intel's web infrastructure. All new purchases of the company will not participate in the program in half a year after the transaction is completed.

More companies offer similar programs. Some, like Google, develop them on their own, others use the HackerOne platform.