Google Online Security Blog: Announcing our first GCP VRP Prize winner and updates to 2020 program

Security Blog

The latest news and insights from Google on security and safety on the Internet

Announcing our first GCP VRP Prize winner and updates to 2020 program

March 11, 2020

Posted by Harshvardan Sharma, Information Security Engineer, Googleannouncedherevideo

1st prize: $133,337

2nd prize: $73,331

3rd prize: $73,331

4th prize: $31,337

5th prize: $1,001

6th prize: $1,000

Like last year, submissions should have public write-ups in order to be eligible for the prize. The number of vulnerability reports in a single write-up is not a factor. You can even make multiple submissions, one for each write-up. These prizes are only for vulnerabilities found in GCP products. If you have budget constraints regarding access to testing environments, you can use the free tier of GCP. Note that this prize is not a replacement of our Vulnerability Reward Program (VRP), and that we will continue to pay security researchers under the VRP for disclosing security issues that affect Google services, including GCP. Complete details, terms and conditions about the prize can be found here.

Thank you to everyone who submitted entries in 2019! Make sure to nominate your VRP reports and write-ups for the 2020 GCP VRP prize here before December 31, 2020 at 11:59 GMT.