The DJI GO 4 application open users’ sensitive data up for the taking, researchers allege.
The Chinese ISP has expanded its program via HackerOne.
The file-sharing service also disclosed details of past notable bugs for the first time.
Up to 25 percent of valid vulnerabilities found in bug bounty programs are classified as being of high or critical severity.
Google is looking to battle the malicious apps – and apps abusing user data – on Google Play by improving its bug-bounty program arsenal.
Microsoft released the beta of its new Chromium-based Edge – and it is offering rewards of up to $30,000 for researchers to hunt out vulnerabilities in the browser.
Threatpost catches up with David Baker, the chief security officer at Bugcrowd, about the future of bug bounty programs.
The flaw, which existed in a Shopify API endpoint, has been patched.
The online spell check platform is taking its private bounty program public in hopes of outing more threats.