Swig Security Review 2018: Part II | The Daily Swig
“Bug bounties are more popular than ever, yet we’re seeing virtual train wrecks completely missed in the headlines because it’s not yet popular to point out the naked emperors.
Bounties that are started and then abruptly stopped in a single day should tell us that it’s not the cure-all it has been cooked up to be by aggressive marketing.
Beware the ghosts of mismanaged assets past and patch management nightmare present, because the future predicts a technical debt collector coming for poorly thought out bounties this year. Naughty or nice, there is no shortcut to security.”