Google Paid $17 Million in Bug Bounty Rewards in 2025

In 2025, Google paid a total of $17 million in bug bounty rewards to security researchers for reporting vulnerabilities. The company awarded over $3.7 million specifically for Chrome-related security defects and more than $3.5 million for cloud security vulnerabilities. The payouts were part of Google’s ongoing bug bounty program, which incentivizes the discovery and disclosure of flaws in its products and services. No additional technical details, such as specific vulnerabilities or CVE IDs, were provided in the report. The rewards reflect Google’s investment in improving security across its platforms.