Change theme
Help
Press space for more information.
Show links for this issue (Shortcut: i, l)
Copy issue ID
Previous Issue (Shortcut: k)
Next Issue (Shortcut: j)
Sign in to use full features.
Vote: I am impacted
Notification menu
Refresh (Shortcut: Shift+r)
Go home (Shortcut: u)
[ID: 1223031]
Security (Use Subcomponents)>Tools>Bug Handling
Supplemental component tags only. Set main component first. [ID: 1222907]
[ID: 1223136]
Design doc to be reviewed. [ID: 1223032]
[ID: 1223087]
[ID: 1223134]
Milestone(s) impacted by this issue. [ID: 1223085]
[ID: 1223084]
[ID: 1223086]
[ID: 1223034]
Link to incidents in IRM as a result of this ticket. [ID: 1300460]
[ID: 1223088]
This field contains Gerrit urls of code changes that ‘fix’ a security bug (i.e., excluding logging/cleanup commits) and is used when a singular fix cannot be uniquely identified from the existing “Code Changes” field. The change can be in the chromium repo or any other third_party repo. [ID: 1358989]
Pending code changes (auto-populated)
Security (Use Subcomponents)
Security (Use Subcomponents)>Tools
[ID: 1253656]
View issue level access limits(Press Alt + Right arrow for more information)
An important achievement
View staffing
Estimated effort
Description
📯🎊🎊🎊 Announcing the top 20 Chrome VRP Researchers of 2024 🎊🎊🎊📯
As we wrap of 2024, it's time to look back at all the contributions to Chrome VRP this year. Since 2021, Chrome VRP has publicly published a leaderboard of the top researchers for that year.
Since 2023, we have published this list as a report in our issue tracker. This allows for a public version of this leaderboard to exist, no matter what has happened to the social media platforms on which we publicly post this announcement.😉
We are sincerely grateful for all the contributions from the Chrome VRP security researcher community from past years and through 2023, and want to acknowledge those whose efforts have been above and beyond.
====== Without further ado, the
top 20 Chrome VRP Researchers of 2024=====0 Seunghyun Lee (@0x10n)
1 Lukas Bernhard
2 Nan Wang(@eternalsakura13)
3 Cassidy Kim(@cassidy6564)
4 Jie Ding(@limeSec_)
5 Micky
6 @__R0ng of 360 Vulnerability Research Institute
7 Zhenghang Xiao(@Kipreyyy) and Nan Wang(@eternalsakura13)
8 Popax21
9 303f06e3
10 DARKNAVY (@DarkNavyOrg)
11 Anonymous
12 ha0q1
13 [tied ranking] Renan Rios (@hyhy_100) and $researcher
14 Toan (suto) Pham of Qrious Secure
15 Alesandro Ortiz
16 Javier Tejedor of Tashita Software Security
17 Ganjiang Zhou(@refrain_areu)
18 zh1x1an1221 and ret2happy
19 Hou Xiantong(@Bl1nnnk) and pisanbao(@pisanbao) of Wuheng Lab
🤑💰 The single highest VRP reward in 2024 went to Micky for their report of a MiraclePtr bypass --
🎉🥳🎊🎊🎊🎊🎊 Congratulations and amazing work to all! 🎊🎊🎊🎊🎊🎉🥳
Thank you for all your hard work, excellent contributions, and helping us make Chrome Browser and Chromium more secure for all users in 2024 and beyond!
Additionally, we want to extend our gratitude to the entire Chrome VRP community. Thank you for your contributions this year and we look forward seeing your reports in 2025! 🎆🎆🎆
Cheers,
The Chrome VRP Panel && rest of the Chrome Security Team
[for more information about Chrome VRP see: https://g.co/chrome/vrp]
Some notes:
To ensure rankings and leaderboards reflect annual contributions, Chrome VRP leaderboard rankings are now generated based on rewards issued in 2024, since the last leaderboard numbers in 2023 through the last VRP reward panel session on 18 December 2024.
Researchers names and handles are published in this leaderboard and on social media only with their consent. Researchers may elect to remain anonymous and not use a synonym and that is reflected accordingly, while researchers whose consent we did not receive are reflected as $researcher to avoid confusion.