It appears that phishing-related vulnerabilities do not qualify for the reward program.
You may want to reevaluate your policy, because it is incredibly short-sighted.
Phishing is one of the most effective attack vector (link to a page with a zero-day browser exploit), and even though it may not endanger data held by Google, it puts users at risk of ending up with malware that may steal much more than Google-held data.
You may want to reevaluate your policy, because it is incredibly short-sighted.
Phishing is one of the most effective attack vector (link to a page with a zero-day browser exploit), and even though it may not endanger data held by Google, it puts users at risk of ending up with malware that may steal much more than Google-held data.