Security News > 2022 > January > Volunteer Dutch flaw finders bag $100k to forward national bug bounty goal

The Dutch Initiative for Vulnerability Disclosure has scored $100k towards its founder's hope of a nationwide bug bounty available for anything at all.

The DIVD's $100k cash injection is from infosec outfit Huntress Labs and is part of a grand vision aimed at discouraging individual researchers from dumping vulns online, the organisation's founder Victor Gevers told The Register.

"Researchers are fed up with bug bounties because things are not in scope or duplicate or not important enough, and then they dump it on Twitter, and then we're the ones that have to run behind that," Gevers said.

Of DIVD's $100k, half is going towards the bug bounty programme focusing on tools used by SMEs and MSPs, and the other half on hiring full-time staff.

That one find alone paid out $17,500: if DIVD bug bounty claimants spot three similar things, the bounty fund might run out pretty quickly.

Larger crowdsourced bug bounty firms such as HackerOne, BugCrowd, and France's YesWeHack do very similar things - although those are funded by the vendors who feature on those platforms.

News URL

https://go.theregister.com/feed/www.theregister.com/2022/01/13/divd_bug_bounty/