bug bounty

Hacker Conversations: Isira Adithya, the Evolution of an Ethical Hacker

bug bounty, hacker, Hacker Conversations /

Hacker Conversations: Isira Adithya, the Evolution of an Ethical Hacker 2026-06-16 at 17:27 By Kevin Townsend From building LED bulbs to graduating college and buying a house with money earned from bug bounties. The post Hacker Conversations: Isira Adithya, the Evolution of an Ethical Hacker appeared first on SecurityWeek. This article is an excerpt from […]

Hacker Conversations: Isira Adithya, the Evolution of an Ethical Hacker Read More »

Will AI Kill the Bug Bounty Industry?

AI, Artificial Intelligence, bug bounty, bug bounty program, Featured, Vulnerabilities /

Will AI Kill the Bug Bounty Industry? 2026-06-09 at 14:00 By Kevin Townsend Anthropic’s Mythos is accelerating vulnerability discovery to machine speed, forcing the bug bounty industry and offensive security teams to adapt to a future where finding flaws is no longer the hard part. The post Will AI Kill the Bug Bounty Industry? appeared

Will AI Kill the Bug Bounty Industry? Read More »

AI is drowning software maintainers in junk security reports

AI, bug bounty, Don't miss, GitHub, Hot stuff, Linux, News, open source, vulnerability assessment, vulnerability disclosure /

AI is drowning software maintainers in junk security reports 2026-05-18 at 21:32 By Zeljka Zorz AI-assisted vulnerability research has exploded, unleashing a firehose of low-quality reports on overworked software maintainers who are wasting hours sifting through noise instead of fixing real problems. Linus Torvalds, the Linux kernel’s creator, says the flood has made the project’s

AI is drowning software maintainers in junk security reports Read More »

Google to pay up to $1.5 million for zero-click Pixel Titan M exploits

Android, bug bounty, Chrome, Google, News /

Google to pay up to $1.5 million for zero-click Pixel Titan M exploits 2026-05-05 at 17:29 By Anamarija Pogorelec Google has revised its Android and Chrome Vulnerability Reward Programs (VRPs), which pay security researchers to report vulnerabilities in Android, Google hardware, and the Chrome browser. The update raises top bounties to $1.5 million and adjusts

Google to pay up to $1.5 million for zero-click Pixel Titan M exploits Read More »

Google Adjusts Bug Bounties: Chrome Payouts Drop as Android Rewards Rise Amid AI Surge

AI, Android, Artificial Intelligence, bug bounty, Chrome, Google, Vulnerabilities, vulnerability /

Google Adjusts Bug Bounties: Chrome Payouts Drop as Android Rewards Rise Amid AI Surge 2026-05-01 at 18:20 By Eduard Kovacs The maximum reward for a zero-click Pixel Titan M exploit with persistence has increased to $1.5 million. The post Google Adjusts Bug Bounties: Chrome Payouts Drop as Android Rewards Rise Amid AI Surge appeared first

Google Adjusts Bug Bounties: Chrome Payouts Drop as Android Rewards Rise Amid AI Surge Read More »

Meta and PortSwigger drive offensive security further to find what others miss

bug bounty, Meta, News, PortSwigger, vulnerability disclosure /

Meta and PortSwigger drive offensive security further to find what others miss 2026-04-20 at 11:16 By Anamarija Pogorelec Meta Bug Bounty and PortSwigger have formed a partnership to help security researchers sharpen their skills, collaborate more closely, and improve vulnerability discovery. The initiative combines Meta’s bug bounty program with PortSwigger’s Burp Suite, reflecting a shared

Meta and PortSwigger drive offensive security further to find what others miss Read More »

Make OpenAI’s models misbehave and earn a reward

Artificial Intelligence, bug bounty, News, OpenAI /

Make OpenAI’s models misbehave and earn a reward 2026-03-27 at 03:57 By Anamarija Pogorelec OpenAI’s public Safety Bug Bounty program focuses on AI abuse and safety risks across its products. The goal is to support safe and secure systems and reduce the risk of misuse that could lead to harm. This program complements the Security

Make OpenAI’s models misbehave and earn a reward Read More »

Bug bounties are broken, and the best security pros are moving on

bug bounty, Cobalt, cybersecurity, News, penetration testing /

Bug bounties are broken, and the best security pros are moving on 2026-03-10 at 08:33 By Anamarija Pogorelec Penetration testing engagements are organized as scheduled contracts with defined scope, set testing windows, and direct communication channels with client teams. Cobalt’s 2026 Pentester Profile Report describes growing preference for penetration testing as a service (PTaaS) and

Bug bounties are broken, and the best security pros are moving on Read More »

Apple offers $2 million for zero-click exploit chains

apple, bug bounty, Don't miss, Hot stuff, News /

Apple offers $2 million for zero-click exploit chains 2025-10-10 at 16:16 By Zeljka Zorz Apple bug bounty program’s categories are expanding and rewards are rising, and zero-click exploit chains may now earn researchers up to $2 million. “Our bonus system, providing additional rewards for Lockdown Mode bypasses and vulnerabilities discovered in beta software, can more

Apple offers $2 million for zero-click exploit chains Read More »

How to get better results from bug bounty programs without wasting money

Alta Associates, bug bounty, CISO, cybersecurity, Don't miss, Features, Google, Hot stuff, Intigriti, News, strategy, tips, UpCloud, vulnerability disclosure /

How to get better results from bug bounty programs without wasting money 2025-10-07 at 14:03 By Mirko Zorz The wrong bug bounty strategy can flood your team with low-value reports. The right one can surface critical vulnerabilities that would otherwise slip through. A new academic study based on Google’s Vulnerability Rewards Program (VRP) offers rare

How to get better results from bug bounty programs without wasting money Read More »

$4.5 Million Offered in New Cloud Hacking Competition

bug bounty, cloud security, exploits, hacking competition, Wiz, Zeroday.Cloud /

$4.5 Million Offered in New Cloud Hacking Competition 2025-10-06 at 12:53 By Eduard Kovacs Wiz has teamed up with Microsoft, Google and AWS and is inviting cloud security researchers to its Zeroday.Cloud competition. The post $4.5 Million Offered in New Cloud Hacking Competition appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

$4.5 Million Offered in New Cloud Hacking Competition Read More »

Researchers Earn $150,000 for L1TF Exploit Leaking Data From Public Cloud

bug bounty, cloud security, CPU, Foreshadow, Google, L1TF, Spectre /

Researchers Earn $150,000 for L1TF Exploit Leaking Data From Public Cloud 2025-09-22 at 15:59 By Ionut Arghire L1TF Reloaded is a vulnerability combining the old L1TF and half-Spectre hardware flaws to bypass deployed software mitigations. The post Researchers Earn $150,000 for L1TF Exploit Leaking Data From Public Cloud appeared first on SecurityWeek. This article is

Researchers Earn $150,000 for L1TF Exploit Leaking Data From Public Cloud Read More »

Chrome Sandbox Escape Earns Researcher $250,000

bug bounty, bug bounty program, Chrome, sandbox escape, Vulnerabilities, vulnerability /

Chrome Sandbox Escape Earns Researcher $250,000 2025-08-11 at 17:17 By Eduard Kovacs A researcher has been given the highest reward in Google’s Chrome bug bounty program for a sandbox escape with remote code execution. The post Chrome Sandbox Escape Earns Researcher $250,000 appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Chrome Sandbox Escape Earns Researcher $250,000 Read More »

The legal minefield of hacking back

bug bounty, CISO, cybersecurity, Don't miss, Features, framework, hacking, Hot stuff, ImmuneFi, law, News, opinion, strategy, tips /

The legal minefield of hacking back 2025-07-28 at 08:57 By Mirko Zorz In this Help Net Security interview, Gonçalo Magalhães, Head of Security at Immunefi, discusses the legal and ethical implications of hacking back in cross-border cyber incidents. He warns that offensive cyber actions risk violating international law, escalating conflicts, and harming innocent third parties.

The legal minefield of hacking back Read More »

Microsoft announces Zero Day Quest hacking event with big rewards

bug bounty, bug hunting, Don't miss, Microsoft, News /

Microsoft announces Zero Day Quest hacking event with big rewards 2024-11-19 at 21:19 By Mirko Zorz Microsoft is enhancing its bug bounty initiatives with the launch of the Zero Day Quest hacking event. With $4 million in potential rewards, it focuses on driving research in critical areas such as cloud computing and AI. Event focus

Microsoft announces Zero Day Quest hacking event with big rewards Read More »

Red teaming: The key ingredient for responsible AI

Artificial Intelligence, bug bounty, cybersecurity, Don't miss, Expert analysis, Expert corner, hacker, HackerOne, Hot stuff, News, opinion, red team, regulation /

Red teaming: The key ingredient for responsible AI 2024-05-13 at 08:31 By Help Net Security Developing responsible AI isn’t a straightforward proposition. On one side, organizations are striving to stay at the forefront of technological advancement. On the other hand, they must ensure strict compliance with ethical standards and regulatory requirements. Organizations attempting to balance

Red teaming: The key ingredient for responsible AI Read More »

Bug hunters can get up to $450,000 for an RCE in Google’s Android apps

Android, bug bounty, Don't miss, Google, Hot stuff, mobile apps, News /

Bug hunters can get up to $450,000 for an RCE in Google’s Android apps 2024-05-03 at 17:16 By Zeljka Zorz Google has drastically increased the rewards bug hunters can get for reporting vulnerabilities in Android apps it develops and maintains. “We increased reward amounts by up to 10x in some categories (for example Remote Arbitrary

Bug hunters can get up to $450,000 for an RCE in Google’s Android apps Read More »

How to optimize your bug bounty programs

Artificial Intelligence, bug bounty, cybersecurity, Don't miss, Features, hacker, Hot stuff, machine learning, News, opinion, policy, regulation, risk assessment, Risk Management, strategy, tips, Zoom /

How to optimize your bug bounty programs 2024-04-22 at 08:02 By Mirko Zorz In this Help Net Security interview, Roy Davis, Manager – Vulnerability Management & Bug Bounty at Zoom, discusses the role bug bounty programs play in identifying security vulnerabilities and facilitating collaboration with researchers. He offers advice to organizations, stressing the importance of

How to optimize your bug bounty programs Read More »

Thinking outside the code: How the hacker mindset drives innovation

bug bounty, cybersecurity, Don't miss, education, Features, hacker, hacking, Hot stuff, Innovation, News, opinion, skill development, strategy, tips /

Thinking outside the code: How the hacker mindset drives innovation 2024-04-17 at 08:01 By Mirko Zorz Keren Elazari is an internationally recognized security analyst, author, and researcher. Since 2000, Keren has worked with leading Israeli security firms, government organizations, innovative start-ups, and Fortune 500 companies. She is the founder of BSidesTLV and Leading Cyber Ladies

Thinking outside the code: How the hacker mindset drives innovation Read More »

Crowdsourced security is not just for tech companies anymore

bug bounty, Bugcrowd, crowdsourced security, cybersecurity, News, report, survey /

Crowdsourced security is not just for tech companies anymore 2024-02-02 at 07:01 By Help Net Security There is a misconception that only software and technology companies leverage crowdsourced security. However, data contradicts this belief. Companies across various sectors are increasingly adopting crowdsourced security, as reported by Bugcrowd. The government industry sector saw the fastest growth

Crowdsourced security is not just for tech companies anymore Read More »

Scroll to Top