Ethical Hacking Insights from HackerOne Report

0
281
Department of Defense Announces New Bug Bounty Program

Dit bericht verscheen eerder bij FOSSlife

Today’s ethical hackers are motivated by the desire to learn, to earn money, and to protect and defend, according to HackerOne’s 2022 Hacker-Powered Security Report. In fact, 92 percent of hackers say they can find vulnerabilities that scanners can’t, the report says.

Full Disclosure

Bug bounties are a big motivator for ethical hackers in choosing projects, with 65 percent of respondents saying they choose a program based on the rewards offered. Fifty percent of hackers, however, have chosen not to disclose a vulnerability they’ve found, typically (42%) because the organization does not have a vulnerability disclosure program.

Eighty-five percent of respondents think companies should be more transparent about vulnerability disclosure. “Disclosure helps us all learn. By disclosing security vulnerabilities, organizations can help increase overall security. Public disclosure demonstrates that an organization has a high level of security maturity and will be a program worth hacking on,” says hacker Alex Chapman.

Other findings include:

  • 95% of ethical hackers focus their efforts on websites. 
  • 79% of hackers say they hack to learn. 
  • 71% say they’re in it for the money.  
  • 70% hack only part time. 
  • 35% have secured a job based on their hacking experience.

See also:
What Is Ethical Hacking? 
Certifications to Boost Your Open Source Career
 

Ready to find a job? Check out the latest job listings at Open Source JobHub and SysAdmin JobHub.
 

Contact FOSSlife to learn about partnership and sponsorship opportunities.

Dit bericht verscheen eerder bij FOSSlife

Vorig artikelTop 10 storage and backup customer stories of 2022
Volgend artikelStorage hardware shortage causes and how to mitigate them