In 2024, Meta highlighted its ongoing commitment to cybersecurity by awarding over $2.3 million to global security researchers through its bug bounty program. The initiative, launched in 2011, has now surpassed $20 million in total payouts. Meta’s collaboration with security researchers has been essential in improving the safety of emerging technologies such as Generative AI, augmented reality, and advertising tools. These annual payouts emphasize Meta’s dedication to ensuring the reliability of its platforms while fostering a strong community of cybersecurity experts.
The company’s 2024 Bug Bounty Summit showcased significant contributions from the security research community, with nearly 10,000 reports submitted worldwide. Meta awarded bounties for around 600 valid submissions, with payouts distributed among 200 researchers from over 45 countries. India, Nepal, and the United States were the top contributors in terms of total bounties earned. The program’s expansion further demonstrated Meta’s commitment to enhancing its defenses across its various platforms.
Meta also placed a strong focus on GenAI, augmented reality, and virtual reality tools in 2024, urging researchers to submit security reports related to these technologies.
The company’s emphasis on securing large language models (LLMs) was a key component of its strategy to address privacy and security concerns, such as model inversion. Meta credited the research community for providing valuable insights that helped improve the integrity of its cutting-edge AI systems, reinforcing the trust users place in its platforms.
In addition to AI-focused research, Meta also strengthened its security measures for advertising tools and mixed reality hardware. The company introduced new payout guidelines for critical vulnerabilities found in advertising platforms, particularly those involving personal information. Meta’s dedication to hardware security was demonstrated through its engagement with researchers to identify and resolve potential vulnerabilities in AR/VR technologies like the Quest devices. These efforts underline Meta’s goal of continually improving the security of its services while empowering researchers worldwide.
