To try to smooth out the uncertainty, bug bounty programs have long existed – to encourage people to identify issues before ...

Discovery used to be the bottleneck for open source bugs, but with automated discovery, remediation's the bottleneck, which ...

The Internet Bug Bounty program has paused new submissions, citing a massive expansion in vulnerability discovery by AI code ...

Google has announced the launch of its first vulnerability rewards program for Android Enterprise with bounties of up to $250,000. The Cybersecurity and Infrastructure Security Agency (CISA) today ...

OpenAI launches new public bug bounty program covering design or implementation issues leading to abuse and safety risks.

The Department of Defense and the Digital Defense Services have awarded another set of contracts under their "Hack the Pentagon" bug bounty program to security firms HackerOne, Synack and Bugcrowd.

Google has launched the Mobile Vulnerability Rewards Program (Mobile VRP), a new bug bounty program that will pay security researchers for flaws found in the company's Android applications. "We are ...

Microsoft is expanding the list of security experts who can earn cash payouts for submitting novel ways to bypass the built-in security restrictions in Windows. Incident responders and forensics ...

Researchers who identify and report bugs in open-source software will no longer be rewarded by the Internet Bug Bounty team.

Apple has long been the holdout among technology companies offering hackers rewards for finding and reporting software vulnerabilities, but the company recently decided to change course. Apple on ...

Apple’s new plan to pay researchers that uncover security vulnerabilities in its products is a much-needed move that should reduce Apple product security breaches, solution providers told CRN. The ...

Based on the "Hack the Pentagon" bug bounty program, the Army's effort will let military personnel and government civilians find vulnerabilities in the Army's recruiting websites. That old Army slogan ...