Netgear Offers Impressive $15k Bounty to Hackers

Netgear Presentation at CES in 2012

Netgear, a global technology company specializing in networking hardware has recently launched a responsible disclosure program. Netgear is offering up to cash rewards up to $15,000 for bug discoveries ranging from a working SQL Injection to accessing a customer’s live camera feeds.

List of the available Netgear bug bounties from their campaign listing.
List of the available Netgear bug bounties from their campaign listing

This came the same day the Federal Trade Commission filed a lawsuit against D-Link, a rival company. The FTC’s claim was that the company failed to take reasonable steps to secure its routers and IP cameras, potentially compromising sensitive user information. Unlike D-Link’s seemingly complacent security protocols, Netgear is taking an aggressive approach towards product security.

Netgear’s bounty listing states, “we appreciate having security concerns brought to our attention and are constantly monitoring our products to get in front of the latest threats. Being proactive rather than reactive to emerging security issues is a fundamental belief at NETGEAR. Every day new security issues develop.” The full terms and conditions, guidelines and rewards can be found on the bounty listing here.

Tome Verbic