A Russian researcher has been awarded a record $40,000 by U.S. social media site Facebook for spotting a vital security flaw.
Online security expert Andrei Leonov found that the site was vulnerable to remote attacks launched using a bug in the image-processing software Image Magick.
The original Image Magick flaw, dubbed “Image Tragick,” was spotted and patched in May 2016, but hackers have been able to use it to attack larger sites which use the software plug-ins.
Leonov received the payout through Facebook's Bug Bounty program, which rewards computer experts who spot flaws in the site's coding. The program has paid $5 million in its 5-year existence to more than 900 researchers, the company announced in Oct. 2016.
A Message from The Moscow Times:
Dear readers,
We are facing unprecedented challenges. Russia's Prosecutor General's Office has designated The Moscow Times as an "undesirable" organization, criminalizing our work and putting our staff at risk of prosecution. This follows our earlier unjust labeling as a "foreign agent."
These actions are direct attempts to silence independent journalism in Russia. The authorities claim our work "discredits the decisions of the Russian leadership." We see things differently: we strive to provide accurate, unbiased reporting on Russia.
We, the journalists of The Moscow Times, refuse to be silenced. But to continue our work, we need your help.
Your support, no matter how small, makes a world of difference. If you can, please support us monthly starting from just $2. It's quick to set up, and every contribution makes a significant impact.
By supporting The Moscow Times, you're defending open, independent journalism in the face of repression. Thank you for standing with us.
Remind me later.