Bug Bounties Paid for Deep Testing and Less for Traditional Flaws

guest · Aug 1, 2019

Bug Bounties Paid for Deep Testing and Less for Traditional Flaws
August 1, 2019
https://www.infosecurity-magazine.com/news/bugcrowd-deep-testing/

The number of vulnerabilities being reported and bug bounty payouts per vulnerability have increased this year.

According to Bugcrowd’s State of Crowdsourced Security in 2019 report, there has been a 92% increase in the total number of vulnerabilities reported in the last year, while the average payout per vulnerability increased this year by 83%.
David Baker, CSO and VP of operations at Bugcrowd, told Infosecurity that “this is both a good thing and proof there are always more bugs to be found.”

“Ultimately, the fact that the crowd is finding more and more P1s means that these critical bugs are being identified and resolved sooner. Finding bugs is a good thing; promoting better defense through a better offense is a great SDLC strategy.”
Bugcrowd also said that the average payout for critical vulnerabilities reached $2,669.92, a 27% increase over the last year.
Click to expand...

Bugcrowd: The State of Crowdsourced Security in 2019

The Priority One Report provides an inside look into crowdsourced security trends in 2019, as well as a deep dive into emerging and critical vulnerabilities found over the previous year
Click to expand...

Log in or Sign up

Bug Bounties Paid for Deep Testing and Less for Traditional Flaws

guest Guest

Log in or Sign up

Bug Bounties Paid for Deep Testing and Less for Traditional Flaws

guest Guest

Useful Searches