Date: July 22, 2024 Authors: Logan MacLaren, Chris Holt, Adam Bacchus Respond to Disputes Like any scenario involving human interaction, you’re going to have to deal with disputes over severity assignments and payment amounts for your Bug Bounty Program. These disputes often boil down to one single point – the researcher believes the severity assessmentContinue reading “Chapter 6: Handling Disputes”
Tag Archives: vulnerability reporting
Chapter 5: All Things Payment
Date: May 13, 2024 Authors: Logan MacLaren, Deana Shick, Christopher Robinson, Katie Trimble-Noble, Jeff Guerra, Chris Holt Introduction Vulnerability Disclosure Programs (VDP) are differentiated from a sub-classification known as Bug Bounty programs (BBP) when rewards are offered. There are many methods to determine your incentive or payment schedule. Typically, payouts are tied to one ofContinue reading “Chapter 5: All Things Payment”