Founder/CEO @LutaSecurity . Bug bounty & vuln disclosure 
. Hacker. MIT Sloan & Harvard Belfer visiting scholar. @NewAmCyber & @MasonNatSec Fellow. She/her.
U tweetove putem weba ili aplikacija drugih proizvođača možete dodati podatke o lokaciji, kao što su grad ili točna lokacija. Povijest lokacija tweetova uvijek možete izbrisati. Saznajte više
Folks about to take the bug bounty plunge w a bounty platform should at a minimum consider their own philosophy around why they are doing a bug bounty at all, & instruct their bounty platform vendor to run their program to match. If the goal is to protect users, no bans allowed.
If the goal is instead only to check a box that says “we take your security seriously, so we run a bug bounty,” then you can enjoy a smooth relationship w nobody except your bug bounty platform. Good researchers will eventually stop wasting their time trying to help protect you.
So my wish for you all in this bug hunting, bug triaging, bug resolving, bug bounty end of another buggy decade is this: That you all spend the next decade doing meaningful work that you’re proud of, & that security matures from broken business models to a sustainable ecosystem.pic.twitter.com/w0KccgVXrW
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
