S3 Ep19.5: How NOT to be a bug bounty hunter

<p>In this special mini-episode, Paul Ducklin talks to Sophos cybersecurity expert Chester Wisniewski about bug bounty hunting.</p> <p><br></p> <p>How does bug bounty hunting work? What should you do if you get a bug report that doesn't follow established protocol? Chester tells you how to deal with so-called "beg bounties", where self-styled "experts" beg you for money or even threaten you with ill-defined "problems" they claim to have found.</p> <p><br></p> <p><a href="https://news.sophos.com/en-us/have-a-domain-name-beg-bounty-hunters-may-be-on-their-way">https://news.sophos.com/en-us/have-a-domain-name-beg-bounty-hunters-may-be-on-their-way</a></p> <p><br></p> <p><a href="https://nakedsecurity.sophos.com/beware-of-technical-experts-bombarding-you-with-bug-reports">https://nakedsecurity.sophos.com/beware-of-technical-experts-bombarding-you-with-bug-reports</a></p> <p><br></p> <p>Original music by <a href="https://www.edithmudge.com">Edith Mudge</a></p> <p><br></p> <p>Got questions/suggestions/stories to share?</p> <p>Email <a href="mailto:tips@sophos.com">tips@sophos.com</a></p> <p>Twitter<a href="https://twitter.com/nakedsecurity"> @NakedSecurity</a></p> <p>Instagram <a href="https://instagram.com/nakedsecurity">@NakedSecurity</a></p>