Today’s ethical hackers are motivated by the desire to learn, to earn money, and to protect and defend, according to HackerOne’s 2022 Hacker-Powered Security Report. In fact, 92 percent of hackers say they can find vulnerabilities that scanners can’t, the report says.
Full Disclosure
Bug bounties are a big motivator for ethical hackers in choosing projects, with 65 percent of respondents saying they choose a program based on the rewards offered. Fifty percent of hackers, however, have chosen not to disclose a vulnerability they’ve found, typically (42%) because the organization does not have a vulnerability disclosure program.
Eighty-five percent of respondents think companies should be more transparent about vulnerability disclosure. “Disclosure helps us all learn. By disclosing security vulnerabilities, organizations can help increase overall security. Public disclosure demonstrates that an organization has a high level of security maturity and will be a program worth hacking on,” says hacker Alex Chapman.
Other findings include:
- 95% of ethical hackers focus their efforts on websites.
- 79% of hackers say they hack to learn.
- 71% say they’re in it for the money.
- 70% hack only part time.
- 35% have secured a job based on their hacking experience.
See also:
What Is Ethical Hacking?
Certifications to Boost Your Open Source Career
Ready to find a job? Check out the latest job listings at Open Source JobHub.
Contact FOSSlife to learn about partnership and sponsorship opportunities.
Comments