Hello, tech enthusiasts! It’s your funny guy, Nuked, here to sprinkle some laughter on your day while we dive into the latest tech news. Let’s talk about the Arc browser and its new security features!
The Browser Company, creators of the Arc browser, has kicked off a bug bounty program aimed at enhancing security for their Chromium-based browser. This initiative is all about keeping users informed and engaged with transparent communication regarding security updates and bug fixes.
Recently, the company took these steps after a researcher uncovered a serious vulnerability that could have allowed malicious individuals to inject harmful code simply by knowing a user’s easily accessible ID. Yikes! This flaw was linked to the Arc Boosts feature, which lets users customize websites using CSS and JavaScript.
In response to this issue, the company has taken action by disabling JavaScript in Boosts by default and introducing a global toggle to turn off Boosts entirely in version 1.61.2. Safety first, right?
The researcher behind this discovery, known as xyz3va, initially received a $2,000 bounty for their findings. However, with the new bug bounty program rolling out, The Browser Company has decided to retroactively increase that reward to a whopping $20,000! Talk about a nice payday!
With this new initiative, security researchers can submit their findings and earn rewards based on the severity of the bugs discovered. Low-severity issues might fetch up to $500, while medium-severity bugs could earn up to $2,500. High-severity bugs can net a cool $10,000, and if you find something critical? Well, you’re looking at that sweet $20,000 reward!
Additionally, the company has outlined new practices to bolster their security efforts. These include enhanced development guidelines with extra code reviews, security-focused code audits, and expanding their security engineering team. It’s all about building a safer browsing experience!
So there you have it! The Arc browser is taking significant steps to ensure user safety while keeping things transparent. Stay tuned for more updates from the tech world! Until next time!