Bug bounty platforms buy researcher silence, violate labor laws, critics say
Bug bounty platforms were designed to provide support for researchers ethically disclosing security flaws, but instead they serve as slush funds for hush money to help businesses keep their security problems quiet
And the platforms may also violate labor law by exploiting researchers.
[J.M. Porup/CSO]