>> Bug bounty programs are on the rise.
More and more major companies are asking for help in finding vulnerabilities.
Who are they asking?
Anyone! Companies, including Facebook, Google, Microsoft, Apple,
and many more are asking any hacker out there to find vulnerabilities
and report them directly to the company.
The company will come up with a patch and then publicly announce it so everyone can apply it.
The hackers are, of course, compensated in cash for their efforts.
The payouts, though, are not the main impetus for these vulnerability finders.
It's making a difference, helping by hacking.
There are even companies that connect businesses with the hackers.
The largest and most prominent one is HackerOne, which has a network of over 100,000 hackers
to whom it has paid over $14 million in bounties.
HackerOne takes away administrative headaches in terms of coordinating payments
from organizations to individuals.
It promotes intelligence sharing and allows hackers to earn a measurable reputation.
Clients of HackerOne include Twitter, Slack, Adobe, Yahoo, LinkedIn, GitHub, Airbnb,
Lufthansa, Snapchat, Qualcomm, General Motors, YouPorn, Panasonic Avionics,
Shopify, Uber, Yelp, and Nintendo.
转载于:https://www.cnblogs.com/sec875/articles/10028495.html