Security news aggregator

Latest coverage for Reward

Reward-related cybersecurity coverage examines bug bounties, vulnerability disclosure incentives, and how compensation can influence reporting and risk.

5 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Reward in information security usually means compensation offered for finding and responsibly reporting a vulnerability, commonly through a bug bounty or vulnerability disclosure program. Payment may depend on severity, exploitability, affected assets, report quality, and whether the issue is previously known. Some programs also reward information that helps identify active abuse or improve defenses, but the intended activity and eligibility should be explicitly defined.

Rewards can extend defensive testing beyond an organization’s internal teams, but they require clear scope, reporting channels, response targets, and rules for handling sensitive data. Without these controls, researchers may test unauthorized systems, expose personal information in proof-of-concept material, submit duplicates or invalid findings, or dispute inconsistent decisions. Security teams should connect accepted reports to vulnerability management: validate and prioritize findings, track remediation, communicate disclosure decisions, and preserve evidence. Program metrics such as response time, remediation time, and recurring vulnerability classes can show whether incentives are improving security rather than merely increasing report volume.

Volume over time

Weekly headline count for the current query.

Showing 5 most recent headlines Filtered view

All Risk, No Reward: Meta's Ongoing Legal Issues in EuropeSocial media giant Meta is likely to face more legal hurdles over its plans to use the personal data of European Facebook and Instagram users to train artificial intelligence models. Meta paused efforts to train AI with European data in June 2024.

Bank Info Security 1 year, 10 months ago

Breach Roundup: Ex-Verizon Worker Cops to Spying for China

Also: Turn in Volodymyr Kadariya, Get $2.5 Million from Uncle SamThis week, an ex-Verizon employee pleaded guilty, SonicWall fixed critical flaws,South Korean hackers exploited a zero-day, U.S. retailer Dick's Sporting Goods was breached, the U.S. government offered a big reward, Grok AI will send election queries to Vote.gov, and HIPAA is 28 years old.

Also: $5M for Info on the Crypto Queen; Attacks on BtcTurk and CoinStatsThis week, crypto stealer convicted, reward for info on Crypto Queen increased, BtcTurk and CoinStats suffered cyberattacks, Lazarus blamed for Alex Lab hack, Nigeria refuted allegations of ill treatment, sentencing in Hydrogen Technology case, Binance fined in India, and FBI warned of crypto scams.

Bank Info Security 2 years, 2 months ago

US Pressures Iran Over Phishing Campaign Against Feds

Departments of Justice, Treasury and State Take Action Against Iranian Cyber ActorsThe U.S. federal government instigated a full court press against four alleged Iranian state hackers, unsealing a multi-count criminal indictment, slapping the men with Treasury sanctions and offering a reward of up to $10 million for their capture.

Bank Info Security 2 years, 2 months ago

US Presures Iran Over Phishing Campaign Against Feds

Departments of Justice, Treasury and State Take Action Against Iranian Cyber ActorsThe U.S. federal government instigated a full court press against four alleged Iranian state hackers, unsealing a multi-count criminal indictment, slapping the men with Treasury sanctions and offering a reward of up to $10 million for their capture.