Not only will they take a URL and test it for many days, but they have also found what other systems have not identified. To see a list of all excluded items click Here.ĭavid Levin, Western Union’s director of information security, said: " testers dig deep in their testing. They are descriptive error messages, brute-force attacks on the login and password reset pages, clickjacking, self-XSS, cross-site request forgery (CSRF) on pages available to anonymous users, logout CSRF, and flaws related to SSL settings. However, there are items that are not eligible for the reward. Researchers who report bugs can earn between $500 and $5,000. However, the company has now decided to make its program public to allow all of the 15,000 researchers who have signed up on the crowdsourced security testing platform to report flaws. The company has had a bounty program in place since 2014 on Bugcrowd, but it was private. Western Union, the financial services and communications company, has announced an expanded bug bounty reward program.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |