Facebook is expanding its bug bounty program and will begin offering rewards for finding bugs in third-party apps on its platform. Researchers have to submit a proof-of-concept to show how the vulnerability could allow hackers to access user data, Facebook said. Rewards will be based on the impact of each report, with a minimum reward of $500 per vulnerable app.