Since the @Pwn2Own_Contest bounties for hacking a Tesla are higher for similar categories of bugs that are offered year-round in Tesla's ongoing regular bug bounties (max $15k per issue), they've just incentivized hackers to hold their bugs until the contest.
#perverseincentiveshttps://twitter.com/iblametom/status/1084920835402534913 …
-
-
It got shot down though, I think people were worried journalists wouldn't be interested in the contest if wasn't all 0day, even if it required the same level of expertise.

-
Marketability of zeroday research without an active threat was a challenge I faced at Talos. Businesses care a lot more about a botnet with trivial or no exploitation capability at all than your sandbox break out kernel vulns that you just have in your pocket.
- 2 more replies
New conversation -
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
time limitations in bounties etc has caused me to widthhold bugs. In case, google pixel. I had vulns based on firmware that was leaked to me, I had to wait until it was released and the bounty was public. FWIW Google was awesome, funded my son's special olympics team
- 9 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.