Catch up on stories from the past week (and beyond) at the Slashdot story archive


Forgot your password?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Submission + - The zero-day bounty hunters (

Barence writes: "Fewer than 1% of the exploits detected by Microsoft in the first half of last year were against so-called zero-day vulnerabilities – those that were previously unknown. That figure raises a question: if the vast majority of real-world exploits are “known threats”, what makes zero days so valuable that they have spawned a hidden industry of bounty-hunting researchers? The zero-day bounty hunters looks at the big money involved in finding zero-day vulnerabilities, what kind of people — with good and bad intentions — make it their business to look for them, and whether offering "bounties" is actually the wisest way for the security industry to handle the issue. It also includes an interview with a professional security researcher and ethical hacker about how and why he does what he does."
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

The zero-day bounty hunters

Comments Filter:

"Our vision is to speed up time, eventually eliminating it." -- Alex Schure