| ▲ | sammy2255 18 hours ago | |||||||
They've already proved themselves as competent. $50k a year to a billion dollar company is nothing. Even if they find 0 vulnerabilities a year it's still worth it to them | ||||||||
| ▲ | tptacek 16 hours ago | parent | next [-] | |||||||
I directionally agree with you but we could go another 20 comments deep on exactly what the purpose of an external pentest or red-team exercise is and how it might not match up perfectly with what an amateur web hacker is currently doing. But like: yeah, they could get into that business, at least until AI eats it. | ||||||||
| ▲ | wiether 9 hours ago | parent | prev [-] | |||||||
So now they found a vulnerability, the company should pay them $50k a year until they retire because they proved themselves competent? | ||||||||
| ||||||||