This article covers the use of bug bounty policies by companies and organizations to identify vulnerabilities within their networks. These policies aren’t used by all organizations for fear of legal action but companies of all sizes have found them to be useful. Linus’s Law was referenced in the article as it essentially means that the more eyes you have looking for a problem, the better odds you have of finding it. Most ethical hackers have different skill sets in addition to their specific strengths and weaknesses. This allows the companies paying for said “bug bounties” to receive a wide range of input from multiple sources for a relatively small amount of money. The average cost per bounty is $800. Overall, bug bounty policies are a useful tool for businesses both small and large.
