Why more and more companies are turning to bug bounties

Why more and more companies are turning to bug bounties

As systems grow ever-more complex and cybercriminals grow in number and expertise, there is a growing pressure to ensure your organization is safe and secure.

But with a global shortfall of cyber-security talent expected to reach 1.8 million by 2022, finding enough bodies with the right talent to find and plug every hole in your company’s cyber defences is a constant struggle for many.

As a result, many organizations are turning to crowdsourcing. There is a growing acceptance of ethical hackers as a viable outsourcing option in a scheme known as bug bounties.


The rise of bug bounties

The concept of bug bounties – where companies invite hackers to test their systems and report discovered vulnerabilities back to the company in exchange for a reward – has been around for nearly 25 years. In 1995, Netscape launched the ‘Netscape Bugs Bounty’ program to let people find bugs in beta versions of Netscape Navigator 2.0. Rewards included up to $1000 cash, Netscape swag, and ‘bragging rights’.

You’re viewing IDG Connect Insider content. Please enter your email to continue.


«C-suite talk fav tech: Todd Carothers, CounterPath


Typical 24: Patrick Dennis, Guidance Software»
Dan Swinhoe

Dan is Senior Staff Writer at IDG Connect. Writes about all manner of tech from driverless cars, AI, and Green IT to Cloudy stuff, security, and IoT. Dislikes autoplay ads/videos and garbage written about 'milliennials'.  

  • twt
  • twt
  • Mail

Our Case Studies

IDG Connect delivers full creative solutions to meet all your demand generatlon needs. These cover the full scope of options, from customized content and lead delivery through to fully integrated campaigns.


Our Marketing Research

Our in-house analyst and editorial team create a range of insights for the global marketing community. These look at IT buying preferences, the latest soclal media trends and other zeitgeist topics.



Is your organization fully GDPR compliant?