HackerOne revealed on Tuesday that Chinese technology company Tencent’s bug bounty system is now available through its website.
More than 600,000 hackers registered on HackerOne will enter Tencent’s bug bounty program in search of vulnerabilities in the company’s products. Tencent, on the other hand, would exploit the HackerOne network for bounty payments.
The HackerOne group has access to Tencent’s public and open bug bounty system managed externally by the Tencent Security Response Center (TSRC). Although they have been compensated by HackerOne, all rewards are determined by Tencent alone.
Ethical hackers will receive up to $15,000 in bonuses for qualifying legitimate vulnerabilities in Tencent items. Tencent, one of the largest Internet service providers in the world, has opened all of its products and services to bug hunting.
“We are the first company in China to set up a Security Response Center and now, by collaborating with Hacker One, we expect proactive work from a wider global security community,” said Juju Zhu, COO of Tencent Security Response Center.
HackerOne notes that a growing number of organizations in the Asia Pacific region have initiated bug bounty programs.
The company has introduced customer services with government, business and technology organizations in the country, including Singapore’s Ministry of Defense (MINDEF) and the Government Technology Agency (GovTech), LINE, and others.
Hackers interested in getting paid for discovering bugs in Tencent’s products can review the TSRC Bug Bounty Program Policy page and the details and guidance on bounty payments.