Providing Free and Editor Tested Software Downloads

MajorGeeks.com - Got Geek?

All In One Tweaks

Antivirus & Malware

Drives (SSD, HDD, USB)

Graphics & Photos

MajorGeeks Windows Tweaks

Office & Productivity

· How To and Tutorials
· Life Hacks and Reviews
· Way Off Base
· MajorGeeks Deals
· News
· Off Base
· Reviews

· YouTube
· Facebook
· Instagram
· Twitter
· Pintrest
· RSS/XML Feeds

· News Blur
· Yahoo
· Symbaloo

· Top Freeware Picks
· Malware Removal
· Geektionary
· Useful Links
· About Us

· Copyright
· Privacy
· Terms of Service
· How to Uninstall

1. Smart Defrag

2. GS Auto Clicker

3. Macrium Reflect FREE Edition

4. Sergei Strelec's WinPE

6. Visual C++ Redistributable Runtimes AIO Repack

7. K-Lite Mega Codec Pack

10. Format Factory

8 Windows Shortcuts That’ll Make You More Productive and Save You Time

Windows 10 Not Dead Yet - You Can Still Get Updates For Free

What is a '400 Bad Request - Request Header or Cookie Too Large' Error and How to Fix It

How to Fix Windows Install Error 0xC1900101

How to Force Enable Windows 10 Extended Security Updates If The Option Is Not Showing

Windows 11 25H2 is Out: What’s New and How to Get It Now.

Star Trek Fleet Command Promo Codes: Redeem Codes for Free Shards, Blueprints And Resources

Boost Your PC Speed with ReadyBoost: How a Thumb Drive Can Enhance Your System's Performance

5 Hidden Windows Tools You’ve Had All Along But Never Use

Use the Windows 10 Media Creation Tool Before Support Ends For Windows 10 in 2025

Let's standardize the payments for bug bounties

Posted by: Timothy Weaver on 12/26/2013 04:40 PM [ Comments ]

It's being proposed that there be a standardized payment for bug bounties. Stefan Frei, research director at NSS Labs, has put out a manifesto suggesting bug bounties be set at the level of $150k per exploit found.

"It is time to examine the economics of depriving cyber criminals’ access to new vulnerabilities through the systematic purchase of all vulnerabilities discovered at or above black market prices," Frei argues. "Security depends largely on ethical researchers reporting vulnerabilities under the practices of coordinated disclosure. Meanwhile, the black market is expanding rapidly and offering large rewards for the same information. Traditional approaches based on 'more of the same' cannot deliver better overall security."

You might be surprised to know that governments are the biggest buyer of vulnerabilities. But then again, maybe not.

Comments

comments powered by Disqus

© 2000-2025 MajorGeeks.com

Powered by Contentteller® Business Edition