Riot has offered a $157,097 to the person who finds a security flaw in Vangard, the company's anti-cheating system.
The announcement was made yesterday and clearly presents itself as the highest premium in for in this genre so far. Published on the HackerOne platform, users interested in the Bounty bug can have access to a few notes to be able to identify vulnerabilities.
This article will also interest you: These hackers who earn a lot of money… legally
In reality, there are several reward levels that are not similar. The more dangerous the security flaw, the higher the premium. The reward starts at US$25,000, for a vulnerability that could allow an outsider to access personal information of users of the platform, it will extend up to $157,000 if the security flaw allows" "code execution at the core level," which could allow a cybermalming to harm the integrity of the computer in a deeper way. Examples were provided by the company on its official page dedicated to bonuses.
In practice, this type of offer is not really new. Indeed, several publishers offer this kind of Bug Bounty through HackerOne. But we must admit that the proposal made by Riot is a first because none has yet reached this level. Indeed, for example Valve often offers premiums of up to 3000 U.S. dollars maximum depending on the severity of the family discovered. Nintendo up to US$20,000 for the discovery of the flaws depending on their severity as well and Rockstar Games offers a maximum of US$10,000. None reached riot's proposed $100,000 mark. If such a proposal is new, in our case, it may be rooted in the famous controversy that directly concerned its anti-cheating system called Vangard, which was installed on users' terminals when it played the new competitive shooter, Valorant. The problem was that the criticized program (Vangard) continued to operate on players' computers with far more privileges than it should have to function normally. The publishing company has tried to calm critics by claiming that its program is constantly being tested to prevent other forms of vulnerability to affect users' computers. In the proposed premium to justify his thesis and reassure. "We want players to continue playing our games with peace of mind, and we put our money where we are," Riot's riot security team said. It will also add: "If you think you have found a flaw in Vanguard that would compromise player security and privacy, please submit a report immediately. »
This is not the first time the game publisher has launched a bonus. Even though it is the highest, since 2014, it is possible to participate in Riot's Bounty bug program on HackerOne. Before that, prices ranged from US$250 to $4000, depending on a presentation. According to figures released by the company, Riot paid nearly US$2 million for this type of program. In addition, it should be noted that the Valorant game is in Beta version, so is only accessible for two players with keys. Vangard, who will be associated with it, presents the following architecture as described by Benjamin Flann Vanese: "Vanguard consists of three components: the customer, the driver and the platform. The client (user mode) handles all anti-cheating detections as long as the game runs. The client needs to communicate with the platform to detect and allow a player to play. The customer does not consider a machine to be good, unless it recognizes the drivers; machines that are not can't be used to play VALORANT. The driver does not collect or send any information to your computer. The driver was approved by Riot's Extended Validation Certificate, which was also signed by Microsoft for software identification. ».
Now access an unlimited number of passwords: