
Google Praised Researcher's 'Nice Catch' Then Denied Bug Bounty — Flaw Still Unpatched
Security researcher Justin O'Leary reported a privilege-escalation vulnerability in Google's Config Connector, initially accepted as high-priority and high-severity. Google's representative even praised it as a 'Nice catch!' but later reversed course, declaring the behavior 'working as intended,' refusing to pay a bounty and leaving the flaw unpatched.
Source: Slashdot








