Intel bug bounty program expands with more rewards

Security researchers can earn up to $250,000 for finding side channel vulnerabilities.
Written by Jake Smith, Contributor

Video: Intel addresses Meltdown and Spectre security flaws at CES 2018

Intel on Wednesday announced it's changing its bug bounty program from an invitation-only program to public. The chipmaker also introduced a new program focused on side channel vulnerabilities, in the wake of Meltdown and Spectre attacks.

Security researchers who find side channel vulnerabilities can earn an award up to $250,000, Intel said. The program runs through Dec. 31, 2018.

For other vulnerabilities, Intel has increased bounty rewards up to $100,000.

Intel has been under fire of late due to the reaction to its security issues.

Intel CEO Brian Krzanich said in a recent earnings presentation the company will "restore confidence in data security with customer-first urgency, transparent and timely communication."

Previous and related coverage

Use Microsoft Outlook? Update now to fix these two dangerous bugs

Microsoft's February patches include its mitigations for Meltdown-Spectre CPU attacks in its Security Only update.

Spectre reboot problems: Now Intel replaces its buggy fix for Skylake PCs

And offers patching tips from US CERT, which it failed to brief on the bugs.

Editorial standards