sanitation@lemmy.today to Technology@lemmy.worldEnglish · 6 days agoAMD changes rules, denies researcher $10,000 bounty after taking 124 days to patch security flawwww.techspot.comexternal-linkmessage-square18fedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkAMD changes rules, denies researcher $10,000 bounty after taking 124 days to patch security flawwww.techspot.comsanitation@lemmy.today to Technology@lemmy.worldEnglish · 6 days agomessage-square18fedilink
minus-squareITGuyLevi@programming.devlinkfedilinkEnglisharrow-up1·5 days agoA long time ago I felt like bug bounty programs would be an amazing way forward… Now I’m firmly in the camp of fuck it, sell it to the highest bidder.
minus-squareKnock_Knock_Lemmy_In@lemmy.worldcakelinkfedilinkEnglisharrow-up1·5 days agoDepends if the company has a history of honoring bounties or not.
minus-squareRememberTheApollo_@lemmy.worldlinkfedilinkEnglisharrow-up1·5 days agoThe only issue with doing that is selling it to a nefarious party hurts the users and not really AMD. Or at least it isn’t hurting AMD anywhere near as much as it might hurt an innocent party.
minus-squareSculptor9157@sh.itjust.workslinkfedilinkEnglisharrow-up1·5 days agoAnd that is a risk AMD is willing to take.
A long time ago I felt like bug bounty programs would be an amazing way forward… Now I’m firmly in the camp of fuck it, sell it to the highest bidder.
Depends if the company has a history of honoring bounties or not.
The only issue with doing that is selling it to a nefarious party hurts the users and not really AMD. Or at least it isn’t hurting AMD anywhere near as much as it might hurt an innocent party.
And that is a risk AMD is willing to take.