AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

VRP 2025 Year in Review

infonews

securityindustry

Source: Google Online Security BlogMarch 31, 2026

Summary

Google's Vulnerability Reward Program (VRP), which pays researchers to find security bugs in Google products, celebrated its 15th anniversary in 2025 by awarding over $17 million to more than 700 security researchers worldwide. Major 2025 developments included launching a dedicated AI VRP (a separate program focused specifically on AI security flaws), adding AI reward categories to Chrome VRP, and creating a patch rewards program for OSV-SCALIBR (an open source tool that scans software for vulnerabilities). Google also hosted multiple bugSWAT events (live hacking competitions) throughout the year, which generated hundreds of bug reports and distributed over $2.9 million in rewards.

Classification

Attack SophisticationModerate

Affected Vendors

Google

Related Issues

info

Tech Giants Invest $12.5 Million in Open Source Security

Same vendorSecurityWeek

medium

CVE-2026-2589: The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Sensitive Information Exposure

Same vendorNVD/CVE Database

Monthly digest — independent AI security research

Original source: http://security.googleblog.com/2026/03/vrp-2025-year-in-review.html

First tracked: April 1, 2026 at 02:00 AM

Classified by LLM (prompt v3) · confidence: 85%