All Questions
Tagged with white-hat disclosure
2
questions
83
votes
5
answers
23k
views
How to proceed with a white-hat hacker claiming a vulnerability?
I am a security member of a small company which recently got contacted by someone claiming to be a Hackenproof member.
They were reporting on our website being indexed by googlebot (metadata, thin ...
39
votes
4
answers
11k
views
Is demanding a "donation" before disclosing vulnerabilities black hat behavior? [closed]
We have been contacted by an "independent security researcher" through the Open Bug Bounty project. First communications were quite OK, and he disclosed the vulnerability found. We patched the hole ...