Submit your findings and in 10 business days you'll learn if it's of value

Jun 21, 2012 08:58 GMT  ·  By

Exodus Intelligence has started accepting submissions as part of the company’s vulnerability acquisition program. Researchers who identify security holes in various popular products can submit them to the Exodus Intelligence Program and their work will be compensated.

The firm revealed that security experts would only have to wait ten business days to find out if their research would be rewarded.

Furthermore, the program is highly transparent, the contributing researcher being kept in the loop and informed of any additional findings made by Exodus Intelligence’s internal team.

“As Exodus Intelligence does not support any products of our own, we are interested not only in code execution issues, but also vulnerabilities that other acquisition programs may not be (local vulnerabilities, memory disclosures, techniques),” the company’s representatives explained.

However, the program’s focus is to help customers address security holes that are likely to be exploited. This way, by not accepting vulnerabilities that are only exploitable in theory, the company hopes to be able to better compensate experts who submit information that is of real value.

Exodus Intelligence promises rewards that are competitive if compared to other similar programs, but they also offer $20,000 (16,000 EUR) yearly bonuses for the top 4 researchers.

The top 5 experts will also be invited to take part in a collaborative hacking event where they’ll be able to work alongside other experts and the company’s internal team in an attempt to find vulnerabilities.

So, if you’re a security researchers that’s highly skilled in finding “impossible” bugs and you don’t reside in North Korea, Iran, Cuba or Syria (these countries are not accepted), be sure to register an account and submit your work.

If it’s any good, you’ll not only get a monetary compensation, but you’ll also be publicly credited for your discoveries.

For other details check out the FAQ made available by the firm.