A 10-year-old boy from Finland named Jani has been awarded $10,000 by Facebook after he found a security flaw in their sister network, Instagram.
The young kid, who is technically not even allowed to join the site given the age restriction discovered a bug that allowed him to delete comments made by other users.
The issue was “quickly” fixed after being discovered, said Facebook, and Jani was paid soon after – making him the youngest ever recipient of the firm’s “bug bounty” prize.
After discovering the flaw in February, he emailed Facebook. After which Security engineers at the company set up a test account for Jani to prove his theory which he did.
The boy, from Helsinki, told Finnish newspaper Iltalehti he planned to use the money to buy a new bike, football equipment and computers for his brothers.
Many companies offer financial incentives to security professionals to share flaws with them, rather than selling them on the black market.
This amounts adds up to the already $4.3 million that Facebook has already paid to bug bounty recipients since 2011.