Or maybe they found out that shooting the messenger isn't such a good idea after all !
If you listen carefully, you'll hear the sound of a very small ship coming in: Netflix has joined Bugcrowd, offering bounties of up to US$15,000 for vulnerabilities. The bounty program covers a host of apps and platforms. Netflix Android and iOS mobile apps are included, the various APIs at netflix.com, nine other domains on …
Stay within the bounty's rules, and Netflix promises not to sue, which is an important consideration in a world where litigation is increasingly deployed to try and silence research rather than fix vulnerabilities.
Another company that appears to have seen the light. Work with people don't just stick your fingers in your ears or threaten them with legal action.
Biting the hand that feeds IT © 1998–2019