Zoom, the video-conferencing platform, announced on Thursday that it has awarded $1.8 million to researchers who submitted bug bounty reports between over 2021.
Companies can hand-pick security researchers based on their previous work and the private bug bounty programmes are invitation-only.
Zoom said in a statement “While Zoom tests our solutions and infrastructure every day, we know it is important to augment this testing by tapping the ethical hacker community to help identify edge-case vulnerabilities that may only be detectable under certain use cases and circumstances,”
It added “That is why Zoom has invested in a skilled, global team of security researchers via a private bug bounty programme on HackerOne’s platform, which is the industry’s leading provider for recruiting and engaging with security-focused professionals,”
HackerOne calculates statistics for each researcher based on their signal-to-noise ratio, impacted on the programs to which they have contributed, and reputation, all of which are used to determine how relevant and actionable their research findings will be.
Since the program’s inception, Zoom said it has recruited over 800 security researchers on the HackerOne platform, resulting in the submission of several bug reports and the awarding of over $2.4 million in bounty payments, swag, and gifts.