Nepali Times

Nepalis go bug-hunting on the web

Lucrative financial rewards and the expansion of Internet services are driving a ‘bug-hunting’ bonanza among Nepali youth who have time in their hands during the pandemic lockdowns. Once the exclusive ...
CNET

Bug hunting start-up: Pay up, or feel the pain

An upstart security research firm with a controversial business model is at the center of a debate over how software bugs should be disclosed. Vulnerability Discovery and Analysis (VDA) Labs, founded ...
https//fedtechmagazine.com

Bug Hunters Wanted: Bounty Programs Prove Fruitful for DHS, DOD

After a variety of successful bug-hunting pilot programs, the Department of Defense and the Department of Homeland Security are boosting efforts to find and fix bugs throughout their digital ...
CSOonline

AI-powered bug hunting shakes up bounty industry — for better or worse

AI-powered bug hunting has changed the calculus of what makes for an effective bounty program by accelerating vulnerability discovery — and subjecting code maintainers to ballooning volumes of AI flaw ...
The Register on MSN

Curl shutters bug bounty program to remove incentive for submitting AI slop

Maintainer hopes hackers send bug reports anyway, will keep shaming ‘silly' ones The maintainer of popular open-source data transfer tool cURL has ended the project’s bug bounty program after ...
Dark Reading

How Pwn2Own Made Bug Hunting a Real Sport

In April 2007, when Apple's “I'm a Mac” ads were telling people that Macs can't get hacked, security researcher Dragos Ruiu decided to put the idea to the test – in front of a room full of security ...
Dark Reading

Tree of AST: A Bug-Hunting Framework Powered by LLMs

When discussing AI's broader impact on security, the duo acknowledges the double-edged nature of technologies like "vibe coding" (i.e., using AI to generate code). While large language models (LLMs) ...