It will be safer? AVG runs Bug Bounty for all and offers rewards for the vulnerabilities found

AVG, a Czech producer of security software for companies and consumers, opens for freelancers and companies investigating security vulnerabilities, offering prizes in exchange for holes and bugs found (for now) in applications intended for home users and micro-enterprises: AVG AntiVirus FREE 2015 and AVG Internet Security 2015.

AVG, like Google, Microsoft, Facebook and Apple, opening bugcrowd.com , where you can already report problems with AVG applications, takes the next step in security, trying to keep your software free of gaps. The producer is only interested in errors related to:

  • with remote code execution,
  • obtaining the rights the AVG application uses - for example, malicious software or an attacking system with a currently logged in user on a limited account, will be granted the administrator's rights and will execute a code with elevated privileges,
  • with vulnerabilities from AVG drivers that could contribute to the Denial of service (DoS) attack on the AVG application,
  • bypassing AVG auto-protection with the help of AVG anti-virus integrated files, registry keys, running processes and other key AVG components, excluding vulnerabilities in the ASLR (Address Space Layout Randomization) and DEP (Data Execution Prevention) mechanisms,
  • with other errors that could affect system security and stability of AVG products.

All other errors not mentioned above are excluded from the AVG bug bounty program, for example, false alarms generated by the program, errors in translation and bugs in the system and Windows libraries used by AVG applications. In addition, interested parties who would like to check the vulnerability of other AVG applications must request the official consent of the manufacturer in accordance with the provisions of the EULA.

The producer in the press release issued did not declare which "rewards" can count people reporting problems. Let them not think of distributing licenses that will not replace cash prizes.



Learn more about our offer

If you sell security solutions, are a distributor, authorized partner or developer and would like to share your portfolio with a group of potential customers, advertise an event, software, hardware or other services on AVLab - simply write to us. Or maybe you had to deal with ransomware? We can also help you decrypt your files.
Read more

We use Google Cloud Translation and Gengo API’s to translate articles with exception of our comparative tests.