Bug Bounty Evolution: Not Your Grandson's Bug Bounty

Bug Bounty Evolution: Not Your Grandson's Bug Bounty

...Then, in 2016 came Hack The Pentagon, and suddenly everyone was either running a bug bounty program or wanted to run one.Where are we now and what have we learned since 2010? Were the myths of being able to compete on price with the offense market true or was it all just marketing by VC-backed bug bounty platforms? Is there an alternative solution for hackers who currently get treated like disposable workers? What's the best path forward for hackers, organizations, and the security industry now that we have seen over a decade of modern bug bounty programs in practice?... By: Katie Moussouris Full Abstract & Presentation Materials: https://www.blackhat.com/us-22/briefi...