Huawei Beats Google—Offers $220,000 For ‘Zero-Click’ Android Phone Hacks

   

19 Nov 2019

Huawei Beats Google—Offers $220,000 For ‘Zero-Click’ Android Phone Hacks

Forbes

Huawei has fended off questions about secret backdoors in its smartphone and networking technology for years. Now it’s going to reward hackers for finding them in its Android-based mobile phones and in the process is outdoing Google.

In a bug bounty launch last week, Huawei said it would pay up to $220,000 (€200,000) for demonstrating a “critical” weakness in one of its Android devices, including the Mate, P, Nova, Y9 and Honor models. For a “high”-severity issue, hackers can earn up to $110,000 (€100,000). Google, meanwhile, offers up to $200,000 and $100,000 for demonstrations of similar attacks on its Pixel phones.

Huawei revealed the program at a private event for some of the world’s top Android hackers at a Munich, Germany, event last week. In giving an example of how they could get the top prize, Huawei told the hackers they would have to obtain remote access to the device without the target having to click anything. A high-severity hack would see the hacker take over a phone when they had direct access to the phone.

Huawei is, in one way, following Apple’s lead in keeping the bug bounty invite-only. Forbes 30 Under 30 alum Maria Markstedter was one of those invited. She revealed on Twitter that researchers who were invited would also be given tokens to welcome other benevolent hackers into the fold.

The bug bounty was initially reported by TechCrunch earlier this month, but no details on payments or logistics were revealed. According to one hacker present, French researcher Robert Baptiste, Huawei isn't opening up its own HarmonyOS as it is for Android.

"The payouts are interesting, they are aligned with the Apple bug bounty," he said. Apple recently increased its prizes, however, offering up to $1 million for complete remote control of an iPhone with zero clicks. “So I’ll give it a look but I’m not excited, just interested.”

While bug bounties are common among major smartphone makers—Apple and Google are behind two of the biggest—Huawei could have another reason to open up its devices. Letting some of the world's smartest hackers uncover security vulnerabilities could provide proof that it isn’t hiding any backdoors in its most popular phones that the Chinese government could leverage.

View all News
Loading

Supporters & Partners

OFFICIAL GOVERNMENT CYBERSECURITY PARTNER

Dubai Electronic Security Center Logo

dp

OFFICIAL DISTRIBUTION PARTNER

ISPIRE

OFFICIALLY SUPPORTED BY

Telecommunications Regulatory Authority

Official Smart City Partner

Strategic Sponsors & Partners

Strategic AI Partner

Huawei_gisec

Strategic Sponsor


sap

IOT Partner


Vodafone_iotx

 

Strategic Partner


cb

 

Official Digital Partner

etisalat_gisec

Strategic Partner

Strategic Partner

tahaluf

Platinum & Diamond sponsors

Platinum Sponsor

pp

Platinum Sponsor

BLUVECTOR

Diamond Sponsor

fe

Gold sponsors


cs
 

gold sponsor


so

know

emailauth
HumanFirewall

thales

Silver sponsors

cf

df

Education Partner

isc2

ras

vf

west

GISEC

GISEC

nedaa

oracle_gisec

crest

Industry & Association Partner

Germany Association Partner

TeleTrusT

India Pavilion Partner

Logo

Association Partner

Logo

Thank you to Exhibitors

VIEW MORE EXHIBITORS
 

Thank you to our Media Partners