Mozilla has increased its top-level bug bounty reward to reflect what the firm said is the true value of a vulnerability.
The top payout has risen from $3,000 to $10,000, and Mozilla will also reward a wider spectrum of disclosures.
"The Bug Bounty Programme is an important part of security at Mozilla. It has paid out close to $1.6m to date and we are very happy with its success. We have a great community of researchers who have really contributed to the security of Firefox and our other products," said the firm.
"Those of us on the Bug Bounty Committee did an evaluation of the Firefox bug bounty programme as it stands and decided it was time for a change."
Bounties now range from $500 to $10,000 plus. The higher end of the scale would be awarded to researchers with a "novel vulnerability and exploit [or] new form of exploitation or an exceptional vulnerability".
Mozilla has offered a $10,000 bounty before as a "special" reward for dealing with malware such as Heartbleed.
'Changes to the Firefox Bug Bounty Program’ https://t.co/xnAaW2grVK < Ups their high-sev payouts, and will pay for some medium-sev. Nice!— Jeremiah Grossman (@jeremiahg) June 10, 2015
High-quality disclosures with a "clearly exploitable critical vulnerability" can lead to a $7,500 payout, and Mozilla will start to reward vulnerability reports that would previously have been rated Moderate.
There is no set reward for these disclosures, and the firm will decide on a payout by committee. The sums are likely to be $500 to $2,000.
"We looked at how much we award for a vulnerability. The amount was increased to $3,000 five years ago and it is definitely time for this to be increased again. We have dramatically increased the amount of money that a vulnerability is worth," said Mozilla.
"Historically we would award $3,000 for vulnerabilities rated Critical and High. Issues would come up where a vulnerability was interesting but was ultimately rated as Moderate. From now on, we will officially pay out on Moderate-rated vulnerabilities."
The new processors support Intel's Optane memory acceleration technology
Blockchain's killer app is bitcoin, the rest is mostly 'pure marketing', says MaidSafe's David Irvine
Blockchains are not suited to many of the data security purposes being put forward for them
Applications from some member states were down more than 40 per cent
A new RSA report urges coders to sign a 'Hippocratic Oath' before embarking on AI programmes.