Lately, Nepali youths have been earning a decent income by discovering bugs (security vulnerabilities) of the world’s largest IT companies.
They look for and report bugs in their system. The company then rewards the bug if it is valid.
One of them is Aryal near Chitwan. Samip Aryal, 18, is currently waiting for the Class 12 exam.
Starting to detect bugs in early 2020, he has so far earned 10,000 dollars (more than 1.1 million Nepali rupees). After 1-2 friends were inducted into the company’s Hall of Fame, they too became curious about bugs.
‘I’m not a dedicated bug bounty hunter. One or two of my neighbors started to be inducted into the company’s Hall of Fame, ‘Samip told ICT News.
“I have been hearing from class 9 that the company will provide something if the company’s security vulnerabilities are discovered,” he said.
Hall of Fame is the honor or recognition given to those who help strengthen the company’s cyber security. In which the name of the helper is listed in the white hat thank list.
Her interest in it grew even more when she found out that her friend was in the Hall of Fame. He is currently listed as number 27 on Facebook’s Hall of Fame. He started searching for his bug from Facebook.
After finding 1-2 bugs on Facebook, he also tried in Google, Netflix, Emo, PayPal and other companies. Although Emo’s bug was valid, he did not receive the award.
Emo’s bug was valid. But Emo doesn’t have a bug bounty program, ‘says Samip.
Samip also discovered a bug in Netflix but that bug was out of their policy.
According to Samip, Facebook’s White Hat program is user friendly. He has received rewards 11 times from Facebook.
Just a few days ago, he discovered the problem of leaking business tokens due to Facebook open redirection as 11 bugs. In which he was given डलर 500 reward by Facebook.
He had recently discovered a serious security flaw in the messenger chat room.
‘While using the messenger room, my eyes went to the chat bottom. There is also a group chat, ‘he said,’ where you can chat, accept the gallery option and send photos and videos to the group. But without unlocking, I found the problem of getting all the access. ‘
He discovered the bug in 5 minutes. Then, while studying, Samip found that all the Android apps in the world can do this.
He says, ‘This is exactly the fault of Android not protecting the permissions. I also reported this bug to Google. Google reported the bug to Messenger and I reported it on Facebook. ‘
Facebook then offered him a 3,125 reward for information leading to the bug. He also discovered a bug in Facebook’s Watch Together feature.
Although he was interested in IT, he never thought of taking it as a career. He decided to pursue a bachelor’s degree in physics and electronics and communications engineering.
But as he began to detect bugs, many suggested reading Cyber Security. He is still in a dilemma as to what to study for in Bachelor.
Useful Links: BishalRajwarNepali, BishalRajwarEnglish, AddUnit, OfficerBishal, PolicingStudent, GegreSoft, LBR, KKR, College Of Policing, SocialWorkNepal, WindowsActivate, Jyamuno, PolicingStudent, InnerPeace, Jyamuno, BishalRajwar.com.np, BishalRajwar.com, AddUnit, Nepalese Society, YouTube.