- ‘Aggretsuko’ tones down the rage in season 2 1 Year Ago
- TikTok is being used to call out predators 1 Year Ago
- Republican congressman wants to defund PBS over the gay rat wedding 1 Year Ago
- Elizabeth Warren calls for sweeping overhaul of U.S. elections Today 11:47 AM
- In ‘Wild Rose,’ a star is born Today 11:39 AM
- The Sinking City realizes Lovecraftian horror in a new light Today 11:16 AM
- The ‘Avengers: Endgame’ re-release sounds pretty underwhelming Today 11:10 AM
- Google employees won’t be allowed to speak out against YouTube during Pride Today 10:43 AM
- YouTuber Etika found dead, NYPD confirms Today 10:39 AM
- Andrew Yang is holding a universal basic income giveaway Today 10:38 AM
- League of Legends streamer busted live by girlfriend after she finds his Tinder Today 10:19 AM
- Samuel L. Jackson roasts ‘Spider-Man’ marketing gaffe Today 8:49 AM
- Trump cites long-dead ayatollah while announcing Iran sanction Today 8:46 AM
- Why a far-right conspiracy about Ilhan Omar is in the news again Today 7:46 AM
- Razer publicly shames female influencer who tweeted about being sexually harassed Today 7:45 AM
Facebook is paying internet sleuths to find data firms risking user privacy
You could earn a fat paycheck for uncovering the next scandal.
In an effort to prevent Cambridge Analytica-type scandals from happening again, Facebook has launched a new initiative: a data abuse bounty. Internet sleuths who discover a company is abusing their access to Facebook data could net themselves a payday of up to $40,000.
Facebook outlined its data abuse bounty program in a new page on its website Tuesday, coincidentally the same day its CEO Mark Zuckerberg was testifying before Congress over how the social media network failed to protect the data of millions of users.
For a data abuse situation to count for a monetary reward, the issue must involve at least 10,000 Facebook users. It must also be a “definitive abuse of data”—not just data aggregation. The award only applies to cases that Facebook itself is unaware of and not yet actively investigating.
Facebook details that some scenarios are also not covered by the bounty, including data scraping, malware (or otherwise tricking users to install malicious apps), scenarios that rely heavily on social engineering, and non-Facebook cases that involve other properties such as WhatsApp or Instagram.
One more stipulation that’s common to bounty programs is that you give Facebook time to investigate the issue itself before revealing your findings publicly.
If the situation meets all these criteria (and then some), whistleblowers could get anywhere from $500 to $40,000.
Such bounty programs aren’t unusual. Google has a well-known bug bounty program for those that find bugs or malware in its apps and services, including third-party Google Play apps. In 2015, United Airlines began a bug bounty program to ensure its customer and company data was secure. And in 2016, Instagram paid a 10-year-old $10,000 for spotting a particularly nasty bug in its app that allowed users to delete the comments of others.
Facebook’s data abuse bounty program comes a little late for those affected by the Cambridge Analytica scandal—or perhaps just in time, if Congressional representatives ask about how Facebook plans to mitigate the threat of data abuse in the future.
Christina Bonnington is a tech reporter who specializes in consumer gadgets, apps, and the trends shaping the technology industry. Her work has also appeared in Gizmodo, Wired, Refinery29, Slate, Bicycling, and Outside Magazine. She is based in the San Francisco Bay Area and has a background in electrical engineering.