Feb. 12, 2024, 5:48 p.m. | Black Hat

Black Hat www.youtube.com

Two questions to all organizations and hackers interested in bug bounty: As an organization, would you prefer to disclose your patched vulnerability reports publicly? As a hacker, do you prefer to find bugs in an organization that discloses vulnerability reports?

Public disclosure of vulnerabilities has always been a critical and controversial topic in cybersecurity. In this research, we analyze this topic from a bug bounty perspective and examine how the public disclosure of resolved vulnerability reports affects ethical hackers' success …

bounty bug bug bounty bug bounty programs bugs disclosure find hacker hackers organization organizations participation public questions reports vulnerabilities vulnerability vulnerability reports

Humbly Confident Security Lead

@ YNAB | Remote

Information Technology Specialist II: Information Security Engineer

@ WBCP, Inc. | Pasadena, CA.

Director of the Air Force Cyber Technical Center of Excellence (CyTCoE)

@ Air Force Institute of Technology | Dayton, OH, USA

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

Cybersecurity Subject Matter Expert

@ QinetiQ US | Washington, DC, United States

Program Cybersecurity Manage (F/M/X)

@ Alstom | Villeurbanne, FR