This year's Hackceler8 finals in Mexico City 🇲🇽 have concluded, with Kalmarunionen taking the win in our coveted, annual CTF. Congratulations! Kudos to Zer0RocketWrecks for second place, and a big shout out to the semi-finalists DiceGang and Maple Mallard Magistrates. piped.video/watch?v=gEP62jY7… 1st: @kalmarunionenDM 2nd: ctftime.org/team/307823 3rd: @mmm_ctf_team & @dicegangctf

📣 We're delighted to announce our new, dedicated AI Vulnerability Reward Program 🥳 🎉! Join us in taking a look back at two years of AI bug bounties at Google and exploring the new AI VRP 👇 bughunters.google.com/blog/6…

¡Hola from init.g(mexico) we are LIVE! Crazy excited to meet all the incredible students who joined init.g(mexico) today! Very much looking forward to seeing how these bright minds can shape the security industry of tomorrow! Let the learning and hacking begin! init.g() { return SUCCESS; } #initg #ESCAL8 #GoogleMexico 🇲🇽

Google Cloud is excited to be part of an event that focuses on OSS and will help improve security for all Cloud users:

An in depth summary of the consequences of the reward changes we made in 2024! arxiv.org/abs/2509.16655

Heads up for Cloud bug hunters ☁️! From Oct 1, the Cloud VRP is updating its reward structure based on your feedback, including more specific reward categories, fixed reward amounts, and much more! For a full overview 👇 bughunters.google.com/blog/6…

PSA for bug hunters 🔔 ! We've updated the report quality framework for the Google, Cloud, and Abuse VRPs: clearer guidelines ensure more consistency, and make it easier than ever to qualify for the bonus for exceptional reports 💰 goo.gle/4nj5Ta2

We have an exciting piece of vulnerability research 🕵️‍♂️ to share, conducted in collaboration with external researchers from VU Amsterdam. Find out more about the L1TF vulnerability, a CPU vulnerability on some Intel CPUs (Skylake and older). goo.gle/3I69VDv

Rendering untrusted web content is fraught with security risks 🕸️ 🛡️. Read how SafeContentFrame, a new TypeScript library, offers a robust solution for isolating web content and protecting against threats like XSS and side-channel attacks. goo.gle/3K5DRQJ

📢 Exciting News! ESCAL8 and init.g() 2025 are heading to Mexico City this October! 🇲🇽 Find out more about the learning, knowledge sharing, and hacking activities at ESCAL8, and join us for a recap of ESCAL8 2024. bughunters.google.com/blog/4…

The inaugural Cloud VRP ☁️ bugSWAT event was a record-setter 🏆: With 91 identified vulnerabilities resulting in ~$1.6 million in rewards, the event underscored the value of collaboration with external security researchers. bughunters.google.com/blog/5…

Security research 🕵️ and bug hunting 🐞 takes persistence and flexibility. This post details the rocky road to finding a VM escape bug (hint: involves hypervisor vulns, static analysis, and fuzzing). Join us on the quest 🧭! bughunters.google.com/blog/5… bughunters.google.com/blog/5…

Got a knack for security? We've launched a rewards program for OSV-SCALIBR and want your help! Earn cash 💰 for creating new plugins that detect vulnerabilities, secrets, or extract software inventory. bughunters.google.com/blog/6…

Our latest post details how we exploited Retbleed (a CPU vulnerability) to compromise a machine from a sandboxed process and VM! Curious? 👇 bughunters.google.com/blog/6…

🛡️ In 2025 we have already rewarded $108,674 with 5 memory safety bonus multipliers claimed via our Patch Rewards Program! Keep up the good work!

friendly maltese citizens are coming to hackceler8 woooooooooo