Ever wonder what happens when a trillion-dollar tech giant makes a $12 mistake? In 2015, an ex-employee literally bought Google.com. Not a spoofed site, not a scam, but the actual Google.com master domain. And he bought it for the price of a fast-food lunch.
This is the true story of Sanmay Ved, a former Google employee and grad student who was testing out the newly launched Google Domains service late one night. Through a massive cybersecurity loophole and a bizarre API system glitch, Sanmay was able to add the world's most trafficked search engine to his digital shopping cart. He checked out with his standard Discover credit card and actually gained full webmaster admin access to Google's internal systems and Google Search Console for 60 terrifying seconds.
In this video, we break down exactly how this domain registration exploit happened. We investigate the fatal backend error that caused the glitch, the internal panic when the automated security systems realized the master domain was compromised, and the highly specific, coded way the Google Product Security Response Team handled the aftermath. We also look into the bug bounty reward Google paid out, and how this $12 mistake ultimately funded education for thousands of children.
If you are fascinated by tech history, major cybersecurity blunders, and internet mysteries, make sure to hit that subscribe button so you do not miss our next deep dive.
What is the craziest software glitch or web exploit you have ever seen? Let me know down in the comments.
Subscribe for more
About this video:
We explore the infamous 2015 Google Domains glitch where Sanmay Ved successfully purchased the Google.com domain name for $12. This tech history mini-documentary breaks down the cybersecurity failure, the mechanics of domain registrars and APIs, white-hat hacking, and how a simple system timeout bypassed billions of dollars in corporate security infrastructure. This story highlights the realities of the Vulnerability Rewards Program (VRP) and the extreme fragility of modern internet architecture.