Forgot your password?
This discussion has been archived. No new comments can be posted.

Yahoo To Offer Bug Bounty Rewards Up To $15,000

Comments Filter:
  • In other news... (Score:5, Insightful)

    by Frosty Piss (770223) * on Thursday October 03, 2013 @10:01PM (#45032117)

    ...The once powerful Yahoo grasps at straws to attract developers back after fucking them over for a few years...

  • Do you still get the T-shirt?

  • by snero3 (610114) on Thursday October 03, 2013 @10:21PM (#45032229) Homepage

    the web giant also said the voucher rewards were informal and actually funded out of the pockets of the company's own IT security staff

    I don't know how many tshirts they gave out, but I am lead to believe it wasn't many. If someone freely out of their own good will helps you out, at your job! and you can only manage pony up $12.50 that is just an insult, I personally would prefer just a email of thanks than that!! Hell a case of beer maybe!!

    I beat these guys aren't first in line to order a round on Friday night

    • by jiriw (444695)

      I don't know...

      Yes, someone did notify you of something you probably didn't realise yet. And it might have become a problem for the company later on... if the wrong people found out just that. That person did it freely and out of his/her own good but it doesn't necessarily makes your job easier (maybe even harder because now you have to solve this while there are already enough other problems on your plate). It won't reduce your workload... your employer has enough other things for you to do... it won't get

  • by XB-70 (812342) on Thursday October 03, 2013 @10:30PM (#45032277)
    The Undestroy button is not working. The fix is to re-establish the chat rooms, clear the clutter from Yahoo! Messenger, make mail actually function at a reasonable speed and eliminate the mindless Hollywood crap from the main page. I'd like my $$$ now, please.
  • Not taking anything that comes out of an IT staffer's pocket, thanks just the same.
  • I've had a couple of friends whose Yahoo email contacts, including me, got sent spams which were crafted to appear as though the spam was from the friend. The spams contained links presumed to be armed and dangerous. I wonder if Yahoo has a bug bounty for that one? Heck, I'd chip in ten bucks myself if somebody would fix that.

  • by PPH (736903)

    Its big, about the diameter of a silver dollar. Six legs, shiny black body, big pincers and semi transparent wings. Its sitting on cowboyneal's head.

  • by SeaFox (739806) on Friday October 04, 2013 @03:25AM (#45033371)

    Yahoo is set to launch its first formal bug bounty system after Swiss pen testers complained about the $12.50 vouchers offered for locating XSS vulnerabilities

    In other words, Yahoo realized since word got around how lame their rewards were for reporting security vulnerabilities people were more likely to start looking to see how much more they could get selling them to the bad guys instead.

  • Hey, $15,000 will keep you in t-shirts and coffee mugs for life!

  • I don't know what everyone's complaining about. $12.50 comes under "Up To $15,000," and I'll give up to $1,000,000 to anyone can prove me wrong!
    • by La Gris (531858)

      There is no wrong in your statement about $12.50 comes under "Up To $15,000,";
      So there is no circunstance where you would give me up to $1,000,000 in correllation to proving you wrong on the above.
      This is where I could prove you wrong.
      But giving me up to $1.000.000 for proving you wrong would prove you right.

      Finally, the only possible income of all this. is:
      - You have to give me more than $1.000.000 for, proving you are wrong on advertising a reward to an impossible circunstance.
      - And the reward has to be

  • That also just lowers the credibility of Yahoo. They have to have their own employees pay for things in order to operate... Sounds like a startup.

  • So if Yahoo's recent history means anything, we can expect that the first bug bounty will pay 2 million dollars, which Marissa will claim for finding a font the wrong color, then she will immediately order the program ended for nebulous "abuses"?

    Of course, that would still sound better than giving out an insulting coupon for company swag. ;)
  • What's on the t-shirt? Suggestion: "I submitted a bug report to Yahoo and all I got was this lousy t-shirt"
  • Before, it was Yahoo being cheap. Now it's Yahoo also screwing their own staff.

  • ..."Yahoo To Offer Bugs Bunny Rewards Up To $15,000"

    Darn floaters.

Simplicity does not precede complexity, but follows it.