Security News > 2021 > March > Security bug hunters focus on misconfigured services, earn big rewards
An overview of the hacking activity on the HackerOne vulnerability coordination and bug bounty platform shows that misconfiguration of cloud resources is quickly becoming a hot target for ethical hackers.
As Kottmann told BleepingComputer on more than one occasion, most of the repositories had been copied because of misconfigured resources that allowed easy access.
In terms of bounties paid, HackerOne says that 2020 was the year when hackers earned $40 million from disclosing vulnerabilities to companies on the platform.
Some hackers were more prolific than others.
Since 2019 when HackerOne had its first hacker millionaire, another eight hackers earned that amount and one of them passed the $2 million mark.
In two years, the community has grown to more one million registered hackers spread across the globe, most of them doing this job part time and more than half being under 25.