Google launches bug bounty program to find KVM vulnerabilities, offering $250,000 reward

From Nasdaq: 2024-07-02 15:48:39

Google has launched a new bug bounty program called kvmCTF to uncover vulnerabilities in the KVM hypervisor, offering up to $250,000 for a successful full virtual machine escape exploit. Participants can access a guest VM in a lab environment to conduct attacks on the host system’s kernel.

The goal of the attack in Google’s program is to exploit a zero-day vulnerability in the KVM subsystem, with successful attackers obtaining a flag as proof. The company aims to identify virtual machine escapes, code execution flaws, information disclosure issues, and denial-of-service bugs through this initiative, as reported by Securityweek.

Read more at Nasdaq: Google Launches $250,000 Bug Bounty Program For KVM Exploits

More Live News

Key U.S. Economic and Corporate Events for August 11-15, 2025

Fed Nomination Sparks Speculation on Rate Cuts

Luskin warns: Miran's Fed appointment dangerous for markets