CSOonline

11 top bug bounty programs launched in 2024

Software providers continue to rely on community support to help them identify code mistakes that can lead to malicious attacks. Bug bounty programs remain a crucial component of cybersecurity ...
Bleeping Computer

Tesla Pays $10K for Microsoft SQL Server Reporting Services Bug

Tesla paid a $10,000 bounty for a vulnerability in Microsoft SQL Server Reporting Services (SSRS) that had received a patch five days before getting the bug report. The issue was tagged as a ...
Bleeping Computer

HackerOne paid $81 million in bug bounties over the past year

Bug bounty platform HackerOne has paid $81 million in rewards to white-hat hackers worldwide over the past 12 months. HackerOne manages over 1,950 bug bounty programs and provides vulnerability ...
Threat Post

Tutor LMS for WordPress Open to Info-Stealing Security Holes

The popular learning-management system for teacher-student communication is rife with SQL-injection vulnerabilities. Security vulnerabilities in Tutor LMS, a WordPress plugin installed on more than 20 ...
Healthcare IT News

How bug bounty initiatives can improve healthcare security

Healthcare security teams are under intense pressure to secure their environments from a growing number of threats. Teams are often understaffed, constantly catching up with an onslaught of threats ...
CSOonline

AI-powered bug hunting shakes up bounty industry — for better or worse

AI-powered bug hunting has changed the calculus of what makes for an effective bounty program by accelerating vulnerability discovery — and subjecting code maintainers to ballooning volumes of AI flaw ...