To keep things short, the study of Bug bounties has a great ring to it but could possibly use some improvement. Basically individuals are being paid to expose the weaknesses within a companies infrastructure before some who is actually a bad hacker gets into it first. But it has its pluses and negatives. Yes you may have found holes in a system but the team that has to deal with these fixes could possibly get stressed out from the amount of problems found. Not every company is going to have the funds to fix every gap but it can close major ones though. The findings do support that this is a good thing for companies to have, especially for those companies that are retail. So overwally bug bounty isn’t something I’m against; it’s just one of the many ways to stop hackers from causing damage.