Google boosts Android/Chrome bug-bounty rewards to as high as $1.5M

May 6, 2026 at 05:54 PM

•

1 min read

Google boosts Android/Chrome bug-bounty rewards to as high as $1.5M — Photo: BleepingComputer

TL;DR Summary

Google overhauls its Android and Chrome vulnerability rewards programs, elevating top Android payouts to $1.5 million for zero-click full-chain exploits on the Pixel Titan M2 (with up to $750,000 for non-persistent variants) and offering up to $250,000 for Chrome full-chain exploits plus a $250,128 bonus for MiraclePtr-protected memory allocations; the changes push for concise bug proofs instead of lengthy analyses and narrow Android focus to Linux kernel vulnerabilities in Google components unless researchers demonstrate device exploitability. The revamp follows a record 2025 with $17.1 million paid to 747 researchers, bringing total payouts since 2010 over $81.6 million, and 2026 totals are expected to rise despite some reductions.

Topics:technology #android #bug-bounty #chrome #technology #vulnerability-rewards #zero-day

Share this article

Google now offers up to $1.5 million for some Android exploits BleepingComputer
Google Updates Android Bug Bounty Program With $1.5 Million Offer Forbes
Google will pay you $1.5M if you can hack Pixel's Titan M2 chip Android Authority
Vulnerability Reward Program: 2024 in Review blog.google
Google to pay $1.5 million for hacking its Pixel Phones Cybersecurity Insiders

Reading Insights

Total Reads

Unique Readers

Time Saved

3 min

vs 4 min read

Condensed

82%

611 → 107 words

Want the full story? Read the original article

Read on BleepingComputer

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights