ISLAMABAD: Rafay Baloch, an independent security researcher from Karachi, has been rewarded $5,000 for reporting a remote command execution bug in PayPal’s website.
According to details, PayPal had announced this reward initiative for those researchers who would report about the existence of a bug and its subsequent remote command execution, Technology Times Reported.
Rafay Baloch explained that the bug he reported was very critical in nature and carried a high amount of risk to PayPal as an attacker could have easily managed to execute any command on the server and manipulate the data at will.
According to him, PayPal has recently offered him a job. However, he has not yet taken a decision mainly due to his continued studies.