Overview
Explore the impact of public vulnerability disclosure on bug bounty programs in this 30-minute Black Hat conference talk. Delve into critical questions facing organizations and ethical hackers: Should patched vulnerability reports be publicly disclosed? Do hackers prefer targeting organizations with transparent vulnerability reporting? Examine the controversial topic of public disclosure from a bug bounty perspective, analyzing how it influences ethical hackers' success in identifying new vulnerabilities. Join Ali Ahmed, Amit Deokar, and Brian Lee as they present their research findings on this crucial cybersecurity issue.
Syllabus
Does Public Disclosure of Vulnerabilities Affect Hacker Participation in Bug Bounty Programs?
Taught by
Black Hat