Bug Bounties

AI has been integrated by 82% of ethical hackers into their workflows to facilitate accelerated findings and more efficient assessments, representing a sharp increase from the 63% of respondents who leveraged AI in 2023, while the rate of those who believed AI to be value-adding to their profession held steady year-over-year at 74%, reports Infosecurity Magazine.

During the first day of Pwn2Own Automotive 2026, security teams earned a total of $516,500 by exploiting 37 zero-day vulnerabilities.

The popular open-source data transfer tool cURL has terminated its bug bounty program due to an overwhelming influx of AI-generated contributions.

The new framework builds upon HackerOne's existing Gold Standard Safe Harbor for traditional software.

The new law, Article 8-A, carves out exceptions for actions that might otherwise be deemed illegal, such as unauthorized system access, provided the researcher acts solely in the public interest of cybersecurity.

Bikers, Apple, Storm-657, Astaroth, EES, Salesforce, Aaran Leyland, and more on the Security Weekly News.

Apple has increased financial rewards for zero-click remote code execution vulnerabilities by twofold to $2 million as part of an updated bug bounty program, Security Affairs reports.

SecurityWeek reports that Google has introduced a new AI Vulnerability Reward Program, which expands on its 2023 Abuse VRP, aimed at identifying security flaws and abuse issues across its artificial intelligence products.