This article provides the use of policies that consist of the Lack of vulnerability Disclosure policy and the bug bounty as a helpful tool in cyber-attacks. it seems to me that the policy is very helpful when attacks occur because it prevents hackers from stealing information and causing businesses to shutdown which is amazing to me. the bug bounty in this article is great because this is where companies are going even further, participating in bug bounty markets, where freelance security researchers (also called hackers) are tasked with finding bugs in corporate IT systems and code bases and cogently explaining them to the companies according to Hacking for good: Leveraging HackerOne data to develop an economic model of Bug Bounties | Journal of Cybersecurity | Oxford Academic (oup.com).