CSOonline

Bug bounty programs take root in Russia — with possible far-reaching implications

International sanctions, IT isolation, and shifting attitudes to ethical hacking have bug bounty programs on the rise in Russia, with zero-day acquisition companies potentially poised to profit.
Dark Reading

Why Bug-Bounty Programs Are Failing Everyone

It's been about a decade since the hype for bug-bounty programs first started going supernova, but the jury is still out on the effectiveness of them. According to Katie Moussouris, founder and CEO of ...
Bleeping Computer

OpenAI now pays researchers $100,000 for critical vulnerabilities

Artificial intelligence company OpenAI has announced a fivefold increase in the maximum bug bounty rewards for "exceptional and differentiated" critical security vulnerabilities from $20,000 to ...
ZDNet

Google just tripled its bounty for Linux kernel bugs. Here's why

Google has kicked off a special three-month bug bounty targeting flaws in the Linux kernel with triple the rewards for security researchers. The new bounty, announced this week, looks to harden the ...
CSOonline

9 top bug bounty programs launched in 2025

Bug bounty programs remain a crucial component of cybersecurity strategies in 2025, offering organizations the ability to draw in help from a diverse pool of cybersecurity professionals and ...
Popular Science

How digital bounty hunters search for software bugs—and money

Breakthroughs, discoveries, and DIY tips sent six days a week. Terms of Service and Privacy Policy. The year was 2016, and Hack the Pentagon had just become the ...