If you consider yourself something of a white hat hacker, listen up: you’ve got a new service to poke at without fear of getting hauled into court, and it’s a big one.
Last night at the BlackHat security conference, Square’s resident hacker Dino Dai Zovi announced that the company would be launching a bug bounty program soon. This morning, that program went live.
I figure most TechCrunch readers are plenty familiar with the concept of a bug bounty program, but in case you’re not: it’s a company’s way of officially declaring that they don’t mind if you dig around for security vulnerabilities, as long as you follow their rules and let them know if anything turns up.
In exchange, they’ll credit you for the discovery and kick down a chunk of cash as a sign of thanks, with the amount you’re paid generally going hand-in-hand with how severe the bug…
View original post 149 more words