Twitter is now offering payment under its bug bounty which actually started in June.

Launched through third-party bounty outfit HackerOne, the program has already garnered 44 reports.
Unfortunately, they were submitted before today and don't qualify for a bounty.

How much is the bounty if qualified? Its minimum is a measly US$140. That amount usually goes to people who spot typos or the accidental use of Comic Sans in graphical interfaces. Twitter has not set a maximum.

Twitter stated the following: it is lucky to have security researchers willing to hack it and "To recognise their efforts and the important role they play in keeping Twitter safe for everyone we offer a bounty for reporting certain qualifying security vulnerabilities."

Too bad it is only offering beer money.