The Chinese manufacturer OnePlus has suffered many security incidents in recent years, which have affected even the personal data of its customers.
In an attempt to improve its reputation in this regard, the company has announced a rewards program called OnePlus Security Response Center (OneSRC).
OnePlus will pay between 50 and 7,000 dollars to those who discover and report the security failures of their products and systems. The rewards are divided into five categories:
- Special cases: up to $ 7,000
- Critical: from $ 750 to $ 1,500
- High: from 250 to 750 dollars
- Medium: from 100 to 250 dollars
- Low: from 50 to 100 dollars
OnePlus does not explain how it defines each category but indicates that it will be determined based on the severity of the vulnerability and its real impact on the business.
OnePlus specifically excludes some methods to find faults such as the denial of service, spamming, social engineering with employees or subcontractors of OnePlus or attempts to physically access their properties.
OnePlus has also announced that it has partnered with the HackerOne rewards platform to obtain the advice of experts and security researchers. OnePlus says that this collaboration will begin in 2020 by inviting certain researchers to test their systems against threats.