<p>Episode 159: In this episode of Critical Thinking - Bug Bounty Podcast we sit down with the Google Cloud VRP Team to deep-dive policy and reward changes, what the panel process looks like, and how to best configure for success.</p><p><br></p><p><a href="https://x.com/ctbbpodcast" target="_blank">Follow us on X</a></p><p><br></p><p>Got any ideas and suggestions? Feel free to send us any feedback here: <a href="mailto:info@criticalthinkingpodcast.io" target="_blank">info@criticalthinkingpodcast.io</a></p><p><br></p><p>Shoutout to<a href="https://twitter.com/realytcracker" target="_blank"> YTCracker</a> for the awesome intro music!</p><p><br></p><p>====== Links ======</p><p><br></p><p>Follow your hosts <a href="https://x.com/Rhynorater" target="_blank">Rhynorater</a>, <a href="https://x.com/rez0__" target="_blank">rez0</a> and <a href="https://x.com/gr3pme" target="_blank">gr3pme</a> on X:</p><p><br></p><p>====== Ways to Support CTBBPodcast ======</p><p><br></p><p>Hop on the <a href="https://ctbb.show/discord" target="_blank">CTBB Discord</a></p><p><br></p><p>We also do Discord subs at $25, $10, and $5 - premium subscribers get access to private masterclasses, exploits, tools, scripts, un-redacted bug reports, etc.</p><p><br></p><p>Get some <a href="https://ctbb.show/merch" target="_blank">hacker swag</a></p><p><br></p><p>Today's Sponsor: Join Justin at Zero Trust World in March and get $200 off registration with Code <strong>ZTWCTBB26</strong></p><p><a href="https://ztw.com/" target="_blank">https://ztw.com/</a></p><p><br></p><p><strong>Google Cloud VRP Swag Bonus!</strong> Mention the podcast in any rewarded (cash or credit) VRP report submission before the end of April to receive bonus swag!</p><p><br></p><p>Today’s Guests:</p><p><a href="https://www.linkedin.com/in/darbyhopkins/" target="_blank">Darby Hopkins</a></p><p><a href="https://www.linkedin.com/in/michaelpatrickcote/" target="_blank">Michael Cote</a></p><p><br></p><p>====== This Week in Bug Bounty ======</p><p><a href="https://www.hackerone.com/blog/ai-red-teaming-explained-by-red-teamers" target="_blank">AI Red Teaming Explained by AI Red Teamers</a></p><p><br></p><p><a href="https://www.hackerone.com/press-release/hackerone-sets-standard-ai-era-testing-good-faith-ai-research-safe-harbor" target="_blank">Good Faith AI Research Safe Harbor</a></p><p><br></p><p><a href="https://nullcon.net/goa-2026" target="_blank">Join the Adobe LHE at NULLCON GOA</a></p><p><br></p><p>====== Resources ======</p><p><br></p><p><a href="https://x.com/GoogleVRP/status/2013660670076555418" target="_blank">‘Legendary Guy’ - Jakub Domeracki</a></p><p><br></p><p><a href="https://bughunters.google.com/about/rules/google-friends/cloud-vulnerability-reward-program-rules#reward-amounts" target="_blank">Google Cloud VRP rewards rules</a></p><p><br></p><p><a href="https://github.com/google/bughunters/blob/main/cloud-tiers/cloud-tiers.text" target="_blank">Google Cloud VRP product tiers</a></p><p><br></p><p><a href="https://bughunters.google.com/blog/hardening-google-cloud-insights-from-the-latest-cloud-vrp-bugswat" target="_blank">Bug Hunters blog on the 2025 Google Cloud VRP bugSWAT</a></p><p><br></p><p><a href="https://discord.com/invite/bzA9gc6Z" target="_blank">Google VRP Discord</a></p><p><br></p><p><a href="https://x.com/GoogleVRP" target="_blank">Google VRP on X</a></p><p><br></p><p>====== Timestamps ======</p><p><br></p><p>(00:00:00) Introduction</p><p>(00:10:03) CloudVRP Bugswat Event Breakdown</p><p>(00:16:40) VRP Policy &amp; Rewards Changes</p><p>(00:04:50) Panel Process</p><p>(01:00:08) Configuring for Success &amp; Avoiding Downgrades</p><p>(01:33:47) Scenarios for Success</p>

Critical Thinking - Bug Bounty Podcast

[email protected] (Justin Gardner (Rhynorater), Joseph Thacker (Rez0), & Brandyn Murtagh (gr3pme))

Episode 159: Avoiding Downgrades on Google Cloud VRP with Cote and Darby Hopkins

JAN 29, 2026106 MIN
Critical Thinking - Bug Bounty Podcast

Episode 159: Avoiding Downgrades on Google Cloud VRP with Cote and Darby Hopkins

JAN 29, 2026106 MIN

Description

Episode 159: In this episode of Critical Thinking - Bug Bounty Podcast we sit down with the Google Cloud VRP Team to deep-dive policy and reward changes, what the panel process looks like, and how to best configure for success.Follow us on XGot any ideas and suggestions? Feel free to send us any feedback here: [email protected] to YTCracker for the awesome intro music!====== Links ======Follow your hosts Rhynorater, rez0 and gr3pme on X:====== Ways to Support CTBBPodcast ======Hop on the CTBB DiscordWe also do Discord subs at $25, $10, and $5 - premium subscribers get access to private masterclasses, exploits, tools, scripts, un-redacted bug reports, etc.Get some hacker swagToday's Sponsor: Join Justin at Zero Trust World in March and get $200 off registration with Code ZTWCTBB26https://ztw.com/Google Cloud VRP Swag Bonus! Mention the podcast in any rewarded (cash or credit) VRP report submission before the end of April to receive bonus swag!Today’s Guests:Darby HopkinsMichael Cote====== This Week in Bug Bounty ======AI Red Teaming Explained by AI Red TeamersGood Faith AI Research Safe HarborJoin the Adobe LHE at NULLCON GOA====== Resources ======‘Legendary Guy’ - Jakub DomerackiGoogle Cloud VRP rewards rulesGoogle Cloud VRP product tiersBug Hunters blog on the 2025 Google Cloud VRP bugSWATGoogle VRP DiscordGoogle VRP on X====== Timestamps ======(00:00:00) Introduction(00:10:03) CloudVRP Bugswat Event Breakdown(00:16:40) VRP Policy & Rewards Changes(00:04:50) Panel Process(01:00:08) Configuring for Success & Avoiding Downgrades(01:33:47) Scenarios for Success