New CREST report highlights need for Bug Bounty best practice

Lack of standards for bug bounties is leaving researchers, organisations and bounty platforms confused and at risk26 July 2018: Bug bounty programmes are in urgent need of defined best practices and codes of conduct conclude CREST, the not-for-profit accreditation body representing the technical information security industry, in its latest position report, ‘Bug Bounties; Working Towards a Fairer and Safer Marketplace’. With rapid growth in the bug bounty marketplace, the new CREST report explores good and... Source: RealWire Posted by https://goo.gl/TXzGV5