Square Offers a 'Bug Bounty' to Reward Hackers Who Report Flaws

Square is the latest technology company to launch a "bug bounty" program, which rewards volunteer hackers for finding security flaws and bringing them to Square's attention.

Processing Content

The program, which launched this week, offers a minimum $250 bounty for reports. According to Square's page on the bug bounty site HackerOne, the company has rewarded nine hackers with payments of up to $1,000 and closed seven bugs so far.

"We recognize the important contributions the security research community can make when it comes to finding bugs," said Neal Harris, Square's application security team lead, in a blog post announcing the bug bounty program.

PayPal and Facebook also offer bug bounties to volunteers.

Daniel Wolfe

Interim editor-in-chief, Digital Insurance

Daniel Wolfe is interim editor-in-chief of Digital Insurance and director of data services at Arizent, which publishes DI and American Banker. In... Read full bio

MORE FROM AMERICAN BANKER

Regulation and compliance

FCC hits telecom firm that enabled bank impersonation calls

The Federal Communications Commission proposed a $4.5 million fine against Voxbeam Telecommunications, which it accused of facilitating fraud scams. Many of the calls spoofed phone numbers belonging to American banks.

By Catherine Leffert
Reporter

April 3
Economy

Jobs rebound in March, unemployment at 4.3%

New jobs in health care largely drove the gains, while the federal workforce and finance continued to shrink.

By Ebrima Santos Sanneh
Reporter

April 3
Fifth Third

How Fifth Third grew embedded banking fee revenue 53% in 2025

The Cincinnati bank's Newline business is now its fastest growing commercial payments segment.

By Joey Pizzolato
Reporter

April 3
Commercial banking

US banks with Paris offices on alert due to terror threats

After French authorities stopped a bomb plot against a Bank of America office in Paris, security experts warned banks to step up their preparations for terror attacks.

By Catherine Leffert
Reporter

April 2
Stablecoin

$71.4M in regulated stablecoins stolen in crypto heist

The largest crypto theft of 2026 hit Drift Protocol after attackers exploited a small security council, putting a spotlight on DeFi vulnerabilities.

By Carter Pape
Technology Reporter

April 2
Licenses and charters

Coinbase receives conditional approval for OCC trust charter

The cryptocurrency exchange is the latest digital asset firm to receive a trust bank charter from the Office of the Comptroller of the Currency.

By Melinda Huspen
Tech Reporter

April 2

	About Daniel
twitter	wolfewriter
mailto	daniel.wolfe@arizent.com
linkedin	daniel-wolfe-5947087