Critics say bug bounty programs buy researcher silence, may violate labor law, and are less effective when they are closed and have NDAs placed on them (J.M. Porup/CSO)

J.M. Porup / CSO:
Critics say bug bounty programs buy researcher silence, may violate labor law, and are less effective when they are closed and have NDAs placed on them  —  When Jonathan Leitschuh found a catastrophic security vulnerability in Zoom, the popular videoconferencing platform …

from Techmeme https://ift.tt/348FCn8