Bugcrowd founder and CTO Casey Ellis talks with Greg Otto about why bug bounty companies have always been about pen testing, and what Bugcrowd is doing to bridge the communication gap between researchers and companies.

The bug bounty workforce isn't a large one -- so bug bounty companies are pivoting to a different model.

"We are always happy to discuss feedback and suggestions with the researcher as well as to discuss reinstatement," Bugcrowd said.

DEF CON’s voting village riled up a lot of people.

The purpose of Disclose.io is to avoid the legal messes that can arise when the terms of a bug bounty or vulnerability disclosure program are not clear.

HP says it will be the first bug bounty program dedicated to printers.