Bug Bounty Evolution -- Not Your Grandson’s Bug Bounty
Learn about practical metrics to improve bug bounties and VDPs, non-exploitative hybrid labor models, hiring, & a sales referral bounty
top of page
Short. Precise. Effective.
Insights
Luta Security
Dec 14, 20213 min read
Vulnerability Disclosure Programs Done the Right Way
Third-party vulnerability disclosure and bug bounty programs should never be the main path to discovering software insecurities.
227
Katie Moussouris
Apr 21, 20217 min read
New Clubhouse Security Vulnerabilities Could Happen to Any Growing Unicorn
Luta's CEO hacked the Clubhouse app; vulns fixed now
4,029
Luta Security
Dec 17, 20203 min read
2021 New Year’s Resolutions for VDPs & Bug Bounties
Many of us kick off each new year enthusiastically brimming with more resolutions than a DNS server. We may resolve to get stronger, so...
2530
Luta Security
Dec 16, 20204 min read
FTC’s Settlement with Zoom
In November 2020, the Federal Trade Commission (FTC) announced a settlement with Zoom to reconcile the allegations that the company...
103
Luta Security
Sep 2, 20203 min read
Who’s in the BBQ pit with USG?
CISA and OMB published instructions for federal agencies on vuln disclosure programs. Sadly, the marching orders are all out of whack.
385
bottom of page