Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Google launches AI Vulnerability Reward Program for AI system flaws

Security Tool/Service
First reported
Last updated
Happening score
H score 20
2 unique sources, 2 articles

Summary

Hide ▲

Google launched a dedicated AI Vulnerability Reward Program that expands its security bounty coverage to AI system flaws across flagship products, raising the maximum payout to $30,000. The program matters because it formalizes reporting channels for issues such as rogue actions, sensitive data exfiltration, phishing enablement, and model theft in widely used AI services.

Related Happenings

Prominent cybercrime threat actors AI-assisted zero-day exploitation campaign

Campaign
First: 11.05.2026 16:00 Last: 11.05.2026 16:00 Sources 1

About this happening: An **AI-assisted zero-day exploitation campaign** was planned by **prominent cybercrime threat actors**, but the effort was **disrupted before deployment** and did not reach its i...

Open Happening

Google GTIG analysis of adversary AI use for exploit development and attack orchestration

Technical Analysis
First: 11.05.2026 16:00 Last: 11.05.2026 16:00 Sources 1

About this happening: **Google Threat Intelligence Group** published findings showing **adversaries using AI** for **exploit development** and **attack orchestration**, signaling that model-assisted tr...

Open Happening

Google overhauls Android and Chrome bug bounty programs

Commercial Activity
First: 05.05.2026 14:24 Last: 05.05.2026 14:24 Sources 1

About this happening: **Google** overhauls its **Android and Chrome** vulnerability rewards programs, reshaping payout tiers for **exploit research** and raising top rewards to **$1.5 million**. The ch...

Open Happening

Anthropic launches Project Glasswing with Claude Mythos for vulnerability discovery

Security Tool/Service
First: 08.04.2026 12:16 Last: 08.04.2026 12:16 Sources 1

About this happening: **Anthropic’s Project Glasswing** is now showing measurable results: since launching last month, the **Claude Mythos Preview**-based initiative has uncovered **more than 10,000**...

Latest development: 23.05.2026 14:55

Anthropic said Project Glasswing has uncovered more than 10,000 high- or critical-severity vulnerabilities across widely used software since the program launched last month, including 6,202 high/critical flaws affecting more than 1,000 open-source projects, 1,726 validated true positives, 1,094 high/critical flaws, a critical WolfSSL flaw tracked as CVE-2026-5194 with CVSS score 9.1, 97 upstream patches, and 88 advisories.

Open Happening

Cyber threat actors use AI to accelerate extortion and exploitation

Target Trend
First: 17.02.2026 15:45 Last: 17.02.2026 15:45 Sources 1

About this happening: Cyber threat actors are shifting to **routine operational use** of AI, making **extortion**, **reconnaissance**, **phishing**, and **exploit timing** faster and lower-friction acr...

Open Happening

Timeline

  1. 07.10.2025 16:19 3 articles · 7mo ago

    Google launches AI Vulnerability Reward Program

    Initial Disclosure

    Google launched a dedicated AI Vulnerability Reward Program for security researchers who report flaws in its AI systems, covering Google Search on google.com, Gemini Apps on Web, Android, and iOS, Google Workspace core applications, AI Studio, Jules, Google Workspace non-core apps, and other AI integrations in Google products. The program offers tiered payouts up to $30,000 for high-quality reports, with top awards for rogue actions, sensitive data exfiltration, phishing enablement, model theft, context manipulation, access control bypass, unauthorized product usage, and cross-user denial of service.

    Show sources
    Open in new tab