I am on leave/writing retreat at the moment and one of the things I like to do when away is read. Bruce Schneier’s blog put me on to this very interesting work.
Bounty Everything by Ryan Ellis & Yuan Stevens – (datasociety.net) “Hackers and the Making of the Global Bug Marketplace”
It examines the global business of offering a bounty on bugs found in software and revealed in confidence to the owner companies so they can fix the vulnerability, hopefully, before it is exploited.
It is an academic style report, but the way it starts off by grounding it in the majority experience at the start of the COVID-19 pandemic makes it a good read even for those less technical but with an interest in technology and our society.
It is a longer read but in my opinion worthwhile.
Clive Catton MSc (Cyber Security) – by-line and other articles