Google pays bug hunters to report such issues. In 2022, the company shelled out cash to researchers who discovered vulnerabilities in Android. Google also paid out to those who found bugs in Chrome, as well.
$12 million doesn’t seem like much when compared to Google’s 2022 revenue of about $280 billion. The investment makes a lot of sense for the tech giant. Actively exploited vulnerabilities pose a much greater risk to the company’s bottom line than any rewards program could ever be.
Newlin finds old Bluetooth bug
Despite the advances in cybersecurity, users often assume their devices are safe and secure with measures like two-factor authentication.
However, the recent revelation of a bug dating back to at least 2012 challenges this assumption. This bug, identified by bug tracker Marc Newlin, exploits a Bluetooth vulnerability, posing a risk to Android, Linux, MacOS, and iOS devices.
The exploit allows hackers to gain access to Android devices merely by enabling Bluetooth. On Linux, devices become vulnerable if Bluetooth is discoverable, while iOS and MacOS devices with enabled Bluetooth, especially those paired with a Magic Keyboard, are also at risk.
