The general idea behind rewarding security researchers for finding flaws is that they will actually find flaws. That’s precisely what is happening at Google with the Chrome web browser. Google is now out with Chrome 15, fixing a large number of flaws found by third party researchers who are being paid bug bounties for their efforts.
Google is fixing over 27 flaws and paying $26,511 in bug bounties to security researchers. The biggest payout is headed to researcher Sergey Glazunov for a number of flaws. Glazunov earned $12,174 for five high impact flaws that Google descirebes as Cross-origin policy violations. Glazunov earned an addition $1,500 for medium impact flaw related to Cookie theft with javascript URIs