Security News > 2021 > December > Hacker-powered pentests gaining momentum

Hackers have reported over 66,000 valid vulnerabilities this year - over 20% more than 2020 - with hacker-powered pentests seeing a 264% increase in reported vulnerabilities, HackerOne has announced.

Pandemic-led digital transformation and cloud migration continue to create vulnerabilities as attack surfaces expand and services are outsourced.

Businesses are also remediating vulnerabilities faster than ever as vulnerability management increasingly becomes a core business priority.

"We've continued to see high growth in the financial services sector, for example. Measuring and quantifying risk is their business, and they're seeing that both risk and business outcome is better if they embrace hackers. Across the board, we're seeing customers using vulnerability report data to inform their software development lifecycles."

Hackers reported 21% more vulnerabilities in 2021 than 2020.

While traditional bug bounty saw a 10% increase in valid vulnerability reports, Vulnerability Disclosure Programs saw a 47% increase, and reports from hacker-powered pentests rose by 264%. The median price of a critical bug rose 20% from $2500 in 2020 to $3000 in 2021.

News URL

https://www.helpnetsecurity.com/2021/12/13/hacker-powered-pentests/