http://devco.re/blog/2016/04/21/how-I-hacked-facebook-and-found-someones-backdoor-script-eng-ver/ … High quality&quantity sec. research closes actively exploited vulns for $billion Facebook => $10,000 reward... :(
-
-
@berendjanwever What if you don't want to be arrested for finding vulnerability in a web service/vs a self-hosted application? -
@berendjanwever There is a distinction. -
@jtl999 Please note that I did not say releasing 0-day is always the better option. -
@jtl999 I'm saying most vuln reward progs undervalue the work, whereas releasing (0-day) vulns with site+logo to the media overvalues them. -
@berendjanwever Excellent point
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.