Google launches AI Vulnerability Reward Program for AI system flaws
Security Tool/Service
Summary
Hide ▲
Show ▼
Google launched a dedicated AI Vulnerability Reward Program that expands its security bounty coverage to AI system flaws across flagship products, raising the maximum payout to $30,000. The program matters because it formalizes reporting channels for issues such as rogue actions, sensitive data exfiltration, phishing enablement, and model theft in widely used AI services.
Related Happenings
ExploitBench benchmark shows frontier AI models can stage Chrome exploit chains against vulnerable V8 builds
Technical Analysis
H score16
First: 04.06.2026 16:00
Last: 04.06.2026 16:00
Sources 1
About this happening:
Bugcrowd’s **ExploitBench** now shows frontier AI models can progress through staged **Google Chrome** exploit chains, raising the risk of faster **AI-assisted exploit development...
ExploitBench benchmark shows frontier AI models can stage Chrome exploit chains against vulnerable V8 builds
Technical AnalysisAbout this happening: Bugcrowd’s **ExploitBench** now shows frontier AI models can progress through staged **Google Chrome** exploit chains, raising the risk of faster **AI-assisted exploit development...
Google AI Threat Defense launch adds autonomous AI-attack detection and remediation for enterprises
Security Tool/Service
H score20
First: 28.05.2026 12:55
Last: 28.05.2026 12:55
Sources 1
About this happening:
Google Cloud launched **Google AI Threat Defense**, an **always-on autonomous** security platform aimed at stopping **AI-powered cyberattacks** across enterprise environments. The...
Google AI Threat Defense launch adds autonomous AI-attack detection and remediation for enterprises
Security Tool/ServiceAbout this happening: Google Cloud launched **Google AI Threat Defense**, an **always-on autonomous** security platform aimed at stopping **AI-powered cyberattacks** across enterprise environments. The...
Prominent cybercrime threat actors AI-assisted zero-day exploitation campaign
Campaign
H score39
First: 11.05.2026 16:00
Last: 11.05.2026 16:00
Sources 1
About this happening:
An **AI-assisted zero-day exploitation campaign** was planned by **prominent cybercrime threat actors**, but the effort was **disrupted before deployment** and did not reach its i...
Prominent cybercrime threat actors AI-assisted zero-day exploitation campaign
CampaignAbout this happening: An **AI-assisted zero-day exploitation campaign** was planned by **prominent cybercrime threat actors**, but the effort was **disrupted before deployment** and did not reach its i...
Google GTIG analysis of adversary AI use for exploit development and attack orchestration
Technical Analysis
H score36
First: 11.05.2026 16:00
Last: 11.05.2026 16:00
Sources 1
About this happening:
**Google Threat Intelligence Group** published findings showing **adversaries using AI** for **exploit development** and **attack orchestration**, signaling that model-assisted tr...
Google GTIG analysis of adversary AI use for exploit development and attack orchestration
Technical AnalysisAbout this happening: **Google Threat Intelligence Group** published findings showing **adversaries using AI** for **exploit development** and **attack orchestration**, signaling that model-assisted tr...
Google overhauls Android and Chrome bug bounty programs
Commercial Activity
H score0
First: 05.05.2026 14:24
Last: 05.05.2026 14:24
Sources 1
About this happening:
**Google** overhauls its **Android and Chrome** vulnerability rewards programs, reshaping payout tiers for **exploit research** and raising top rewards to **$1.5 million**. The ch...
Google overhauls Android and Chrome bug bounty programs
Commercial ActivityAbout this happening: **Google** overhauls its **Android and Chrome** vulnerability rewards programs, reshaping payout tiers for **exploit research** and raising top rewards to **$1.5 million**. The ch...
Timeline
-
07.10.2025 16:19 3 articles · 8mo ago
Google launches AI Vulnerability Reward Program
Initial DisclosureGoogle launched a dedicated AI Vulnerability Reward Program for security researchers who report flaws in its AI systems, covering Google Search on google.com, Gemini Apps on Web, Android, and iOS, Google Workspace core applications, AI Studio, Jules, Google Workspace non-core apps, and other AI integrations in Google products. The program offers tiered payouts up to $30,000 for high-quality reports, with top awards for rogue actions, sensitive data exfiltration, phishing enablement, model theft, context manipulation, access control bypass, unauthorized product usage, and cross-user denial of service.
Show sources
- Google's new AI bug bounty program pays up to $30,000 for flaws — www.bleepingcomputer.com — 07.10.2025 16:19
- Google's new AI bug bounty program pays up to $30,000 for flaws — www.bleepingcomputer.com — 07.10.2025 16:19
- Google Launches AI Bug Bounty with $30,000 Top Reward — www.infosecurity-magazine.com — 10.10.2025 14:20