all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Researchers demanding bounty - response?

Add to bookmarks
Oct. 17, 2022, 1:44 p.m. | /u/Waving-Kodiak

cybersecurity www.reddit.com

Hi,

How do you respond to ethical hackers/"researchers" wanting bounty for stuff you already know (but not yet fixed) or they seem a bit "scammy"?

We are getting contacted by several persons wanting bounty for vulnerabilities. Some email from gmail addresses, others do have a custom domain but very little information is provided. No initial reports, no links to bounty platforms or personal contact details etc.

Also, all of them have failed to use the email address stated in security.txt. …

bounty cybersecurity researchers response

Visit resource

More from www.reddit.com / cybersecurity

Should I be learning Cybersecurity on my primary machine? 11 hours ago | www.reddit.com
accounting auditor cybersecurity free +7
QSA Says we Can't Provide Public WiFi 12 hours ago | www.reddit.com
campus can cybersecurity event +13
Chinese Government Poses 'Bold and Unrelenting' Threat to U.S. Critical Infrastructure, FBI Director Says | … 13 hours ago | www.reddit.com
bureau chinese chinese government critical +10
What is best practice to prevent man in the middle compromising emails? 15 hours ago | www.reddit.com
attack best practice caught cybersecurity +13
High School English Teacher to Cybersecurity Engineer - A How-to Guide 15 hours ago | www.reddit.com
cybersecurity engineer guide high +16
Just me, or is every vendor's website awful. WHAT DO YOU ACTUALLY DO? 17 hours ago | www.reddit.com
article customers cybersecurity edr +17
We have Crowdstrike for our EDR. Can we use it as our primary SIEM? 17 hours ago | www.reddit.com
can cons cost crowdstrike +13
Web API Security Champion: Broken Object Level Authorization (OWASP TOP 10) 17 hours ago | www.reddit.com
api api security authorization broken object level authorization +9
Cisco Warns of Large-Scale Brute-Force Attacks on VPNs 19 hours ago | www.reddit.com
article attacks brute brute-force +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Information Systems Security Officer (ISSO), Junior

@ Dark Wolf Solutions | Remote / Dark Wolf Locations
View on infosec-jobs.com

Cloud Security Engineer

@ ManTech | REMT - Remote Worker Location
View on infosec-jobs.com

SAP Security & GRC Consultant

@ NTT DATA | HYDERABAD, TG, IN
View on infosec-jobs.com

Security Engineer 2 - Adversary Simulation Operations

@ Datadog | New York City, USA
View on infosec-jobs.com
View more jobs