Ransomware, insecure connected devices, bug bounties and governments buying bugs: All four ceased to be novelties in 2016; they’re all new normals for cybersecurity.
A bug bounty hunter earned $5,000 for a Facebook hack that allowed him to bypass security protection and access any Facebook user’s true email address.
Finnish security researcher Jouko Pynnonen found a second stored cross-site scripting vulnerability in Yahoo Mail in less than a year, both of which earned him $10,000 bug bounties.
Vulnerabilities in UberCENTRAL, a portal used by businesses to facilitate rides, could have leaked the names, phone numbers, email addresses, and unique IDs.
The government announced its second bug bounty program called Hack the Army, which will concentrate on finding bugs in recruiting websites and databases.