New open source effort: Legal code to make reporting security bugs safer
Aug 03, 2018, 10:00 (0 Talkback[s])
(Other stories by Sean Gallagher)
Not a week goes by without another major business or Internet service announcing a data breach. And while many companies have begun to adopt bug bounty programs to encourage the reporting of vulnerabilities by outside security researchers, they've done so largely inconsistently. That's the reason for Disclose.io, a collaborative and open source effort to create an open source standard for bug bounty and vulnerability-disclosure programs that protects well-intentioned hackers.