OpenAI increases bug bounties to 100,000$

27 March 2025 2 minutes Author: Newsman

From now on, the reward for “critical findings” can reach up to $100,000. The company is also launching a short-term incentive that will last until the end of April — doubling the rewards for IDOR vulnerability reports.

At the same time, OpenAI updated its cyber grants program — with priorities: AI agent security, ensuring model confidentiality, eliminating flaws using AI, and protecting against sophisticated APT attacks. For the first time, micro-grants in the form of API credits appeared, which should accelerate development. The company also signed a partnership agreement with SpecterOps, which will conduct realistic “red team” attacks across OpenAI’s infrastructure. The goal is to integrate security into the architecture and models at an early stage of development.

OpenAI’s bug bounty program was launched in April 2024, and cyber grants have been in operation for two years. During this period, 28 research initiatives have been funded — from prompt injection protection to secure code generation. New directions, such as agentic security, have emerged in response to the launch of Operator and Deep Research agents.

OpenAI is sending a clear signal: the future of AI is impossible without strong cybersecurity. Involving hackers, academia, and startups in creating protection is not just a strategy, but a new standard for responsible AI development.

Other related articles
News
Read more
HP is considering a gaming console, but not on Windows
HP is considering launching a portable gaming console, but not on Windows. Senior Vice President Josephine Tan noted that the user experience of Windows on a small screen is unsatisfactory. The company sees SteamOS as a promising alternative. Valve has already made SteamOS integration available to other manufacturers, and Lenovo has introduced the Legion Go S.
167
News
Read more
13 Million $ Leak from Abracadabra: Fresh Attack on DeFi Sphere
DeFi platform Abracadabra.money has been hacked, with attackers stealing over $13 million in Ethereum cryptocurrency. The hackers exploited a vulnerability in smart contracts to move assets from Arbitrum to Ethereum and distribute them across three wallets. The platform confirmed the incident, froze the borrowing, and offered the hacker a 20% reward for returning the assets. This is the second large-scale withdrawal from Abracadabra, raising questions about the reliability of the DeFi infrastructure.
202
News
Read more
Data leak of over a million students due to cyberattack on the website of New York University:
A cyberattack on New York University (NYU) has exposed the personal data of more than a million students. This massive cyberattack resulted in a loss of privacy and confidentiality, including the names, addresses, phone numbers, and financial information of applicants and students. The incident highlights the importance of strengthening cybersecurity measures at educational institutions to avoid similar situations in the future.
168
Found an error?
If you find an error, take a screenshot and send it to the bot.