Pakistani Hacker Awarded $5,000 for Finding Security Issues in Chrome and Firefox. A Pakistani ethical hacker Rafay Baloch has won US$ 5,000 in a combined bug bounty for identifying a huge bug in internet browsers Google Chrome and Mozilla Fire Fox.
A bug bounty program is a deal offered by many websites and software developers by which individuals can receive recognition and compensation for reporting bugs, especially those pertaining to exploits and vulnerabilities. These programs allow the developers to discover and resolve bugs before the general public is aware of them, preventing incidents of widespread abuse. Bug bounty programs have been implemented by Facebook, Yahoo, Google, Reddit and Square.
Rafay Baloch was awarded this huge amount as prize when he identified a spoofing bug in these browsers. Due to this bug hackers were able to display whatever URL in address bar and the rest of the content would be controlled by them. In other words, Facebook.com would display their fake login page but the address bar would say facebook.com.
So when someone visits the page, he is actually taken to the hackers webpage. The bug exists in many browsers apart from Chrome and Firefox that are used by 75 percent internet users.
Rafay Baloch is not unknown or new in hacking field. He is already very famous bug reporter and security expert. He is an active participant in many bug bounty programs and is listed in large number of hall of fame including Google, Facebook Microsoft, Twitter, Dropbox etc.