Google has updated its Android and Chrome bug bounty programs, increasing rewards for advanced security exploits while reducing payouts for simpler bugs. The company now offers up to $1.5 million for a zero-click, persistent hack targeting Pixel devices with Titan M2 security chips, up from the previous $1 million reward.
At the same time, Google is lowering some Chrome payouts, saying AI tools have made basic vulnerability discoveries much more common. The company will now focus on high-impact, technically complex reports with clear proof of real-world risk.
Google is also continuing its AI security push, offering up to $30,000 for serious vulnerabilities in products like Gemini, Google Search and Workspace AI tools. The company says the new reward structure reflects how AI is changing vulnerability research and encourages researchers to submit fixes alongside their findings.
Source: Android Authority
