1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Who needs a bug bounty when you got this?

Discussion in 'CSO' started by RSS, Aug 26, 2016.

  1. RSS

    RSS New Member Member

    Does shorting a stock for profit signal a new trend in security research?

    Bug bounties and programs to find and address security issues are on the rise. The bounty programs offer a way to coordinate efforts. They offer the potential of reward for those who discover and disclose.

    Bug bounties are an emerging marketplace. Some rewards are generous. Others draw criticism. One group took a different approach.

    They partnered with a financial firm to share their research. Then they shorted the stock of the company right before disclosing what they found. They profited when the stock dropped.

    They set their own payout.

    It’s not clear if they did anything illegal. The ethics of the approach is getting a lot of discussion.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page