Over half a million dollars in incentives have been distributed to researchers that participated in GitHub‘s bug bounty program in 2020, bringing the total payouts to over $1.5 million. For the past seven years, the Microsoft-owned company has run the GitHub Security Bug Bounty Program.
Vendors are increasingly using bug bounty programs to enlist the expertise of third-party researchers in safeguarding their goods and services. In the past, it was difficult to secretly disclose vulnerabilities, and many firms had a designated contact or gateway for vulnerability reports; however, today, credit and financial rewards are frequently offered. According to the vendor, GitHub’s program had its “busiest year yet” in 2020.
To Read More: ZDNet