Bounty offerings for security bugs keep growing. Google is now just 10x behind both Microsoft and Mozilla on vulnerability rewards, and not 15x as before:https://security.googleblog.com/2019/07/bigger-rewards-for-security-bugs.html …
-
-
Whatever the public statement, $500 is a real statistical median per Google's public bug tracker for plain testcases. As for Mozilla, that's my personal experience
-
I don't factor in the "PoC exploit" category ($10k) because it's nonsense (invest 2x more time in a full exploit and get a 30x bounty, again counting strictly by public offerings)
- 6 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
