At the beginning of this year we released our ‘Defensive Vulnerability Pricing Model’ that answers the question “what’s a bug worth?”. This guide outlines how much organizations should budget for crowdsourced security programs, and what reward ranges attract the right talent. In short, this guide, informed by tens of thousands of vulnerability submissions and years of running public and private crowdsourced security programs, set the first market rates for security vulns by criticality, and now organizations are beginning to adopt this guidance.
Posts by Topic
Bug Bounty Management Bugcrowd News Bug Hunter Methodology Company Resources Conferences & Events Cybersecurity News Guest Blogs Product Updates Program Launches Program Management Program Updates Researcher Resources Researcher Spotlight Success Stories Thought Leadership Vulnerabilities Vulnerability Disclosure Winner's Circle
Posts By Author
Abigail Nguy Alyssa Habing Ariana Ling Ashish Gupta Barnett Klane Bugcrowd Bugcrowd Product Marketing Casey Ellis Chloe Brown Daniel Trauner David Baker Grant McCracken Guest Post Jason Haddix JP Villanueva Kaila Pollart Kaushik Srinivas Keith Hoodlet Lauren Craigie Michael Chung Michelle Dailey Omar Carmical Parag Baxi Pawel Lesniewski Rick Beattie Ryan Black Sam Houston Shpend Kurtishaj Tim Sandberg