Verizon Media has paid nearly $10 million to ethical hackers via HackerOne’s platform.
A GitLab path traversal flaw could allow attackers to read arbitrary files and remotely execute code.
The Chinese ISP has expanded its program via HackerOne.
The file-sharing service also disclosed details of past notable bugs for the first time.
The DevOps lifecycle management said that response to its year-old bug-bounty program has been robust.
Up to 25 percent of valid vulnerabilities found in bug bounty programs are classified as being of high or critical severity.
Revive Adserver patches two vulnerability, one of which may have been used to allow hackers to deliver malware to third-party websites.
Threatpost talks to HackerOne CEO Marten Mickos on the EU’s funding of open source bug bounty programs, how a company can start a program, and the next generation of bounty hunters.
The online spell check platform is taking its private bounty program public in hopes of outing more threats.