Security News

Amidst the PR glitz and popularity of bug bounty programs, experts worry that actual smart security strategy is being left behind.

Microsoft says it has awarded more than $2,000,000 in bug bounty rewards to security researchers who have reported vulnerabilities via the company’s bounty program.  read more

While Facebook’s bug bounty program does not typically cover denial-of-service (DoS) vulnerabilities, the social media giant has decided to award a significant bounty for a serious flaw affecting...

Bug bounty platform HackerOne says two of its members have each earned more than $1 million by helping organizations find and fix vulnerabilities in their systems. read more

Threatpost talks to HackerOne CEO Marten Mickos on the EU's funding of open source bug bounty programs, how a company can start a program, and the next generation of bounty hunters.

GitHub is offering unlimited rewards for critical vulnerabilities - and has added "safe harbor" terms to its bug bounty program.

After paying out $250,000 in bug bounties in 2018, GitHub has decided to increase rewards and expand the scope of its bug bounty program. read more

The Swiss government last week announced the launch of a public bug bounty program for its electronic voting systems, with rewards of up to $50,000. read more

Privacy advocates stunned that explicit rules ignored, blame head of FCC US lawmakers have again called for an investigation into mobile companies after it emerged that they have been selling...

Travel search website Skyscanner announced on Wednesday the launch of a public bug bounty program with rewards of up to $2,000 per vulnerability. Skyscanner has been running a private bug bounty...