Search
  • Videos
  • Windows 10
  • 5G
  • CES
  • Best VPNs
  • Cloud
  • Security
  • more
    • AI
    • TR Premium
    • Working from Home
    • Innovation
    • Best Web Hosting
    • ZDNet Recommends
    • Tonya Hall Show
    • Executive Guides
    • ZDNet Academy
    • See All Topics
    • White Papers
    • Downloads
    • Reviews
    • Galleries
    • Videos
    • TechRepublic Forums
  • Newsletters
  • All Writers
    • Preferences
    • Community
    • Newsletters
    • Log Out
  • Menu
    • Videos
    • Windows 10
    • 5G
    • CES
    • Best VPNs
    • Cloud
    • Security
    • AI
    • TR Premium
    • Working from Home
    • Innovation
    • Best Web Hosting
    • ZDNet Recommends
    • Tonya Hall Show
    • Executive Guides
    • ZDNet Academy
    • See All Topics
    • White Papers
    • Downloads
    • Reviews
    • Galleries
    • Videos
    • TechRepublic Forums
      • Preferences
      • Community
      • Newsletters
      • Log Out
  • us
    • Asia
    • Australia
    • Europe
    • India
    • United Kingdom
    • United States
    • ZDNet around the globe:
    • ZDNet France
    • ZDNet Germany
    • ZDNet Korea
    • ZDNet Japan

HackerOne's top 20 public bug bounty programs

16 of 20 NEXT PREV
  • Verizon Media

    Verizon Media

    The unquestionable leader on the HackerOne platform is Verizon Media's bug bounty program, which currently ranks #1 in all-time bounties paid (over $4 million), #1 in hackers the company thanked (1,124), and #1 in most bug reports resolved (5,269).

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • Uber

    Uber

    Ranking second on HackerOne is Uber's bug bounty program, which paid over $1,795,000 in bounties and resolved 1,172 bugs in its products, among many other things.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • PayPal

    PayPal

    Despite arriving on the platform last September, PayPal has established itself as one of the leading bug bounty programs on HackerOne, and is currently credited with paying the highest bug bounty reward on the platform, with a payout of $30,000.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • Shopify

    Shopify

    Ranked #4 on HackerOne with total payouts of over $1.1 million, Shopify is also ranked #1 in having the shortest payout time, with only two days from resolving a bug to paying a security researcher.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • Twitter

    Twitter

    With one of the oldest programs on HackerOne, launched in May 2014, Twitter has paid over $1.1 million in to security researchers in bug bounties.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • Intel

    Intel

    Arriving on HackerOne after the Meltdown and Spectre vulnerability disclosure debacle, Intel has established itself as the most important program on the platform, ranking #6 overall,and  paying researchers a total of over $800,000 in bug bounties.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • Airbnb

    Airbnb

    Ranking #7 is Airbnb with over $600,000 in paid bounties, 508 resolved reports, and 257 thanked researchers.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • Ubiquiti Networks

    Ubiquiti Networks

    Ranking #8 is Airbnb with over $600,000 in paid bounties, 765 resolved reports, and 511 thanked researchers.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • Valve

    Valve

    One of the more recent programs to arrive on HackerOne is Valve. Despite this, the company managed to rank #9 overall, with $570,000 in paid bounties, and a top reward of $20,000 -- enough to rank in the top 5 of largest bounties paid on the platform.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • GitLab

    GitLab

    Ranking #10 is code hosting platform GitLab with over $570,000 in paid bounties, 318 resolved reports, and 162 thanked researchers.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • GitHub

    GitHub

    While GitHub may be above GitLab in popularity, it ranks under its competitor on the HackerOne ranking, one spot below, on #11.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • Slack

    Slack

    Ranking #12 is Slack with a total of over $420,000 in paid bounties, 838 resolved reports, and 420 thanked researchers.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • Starbucks

    Starbucks

    The last place you'd expect to find Starbucks is on HackerOne's top 20 bug bounty programs, but here it is, on #13 with over $300,000 in paid bounties for bugs reported in its web and mobile apps.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • Mail.ru

    Mail.ru

    Despite ranking #14, Mail.ru has rounded up some accolades on HackerOne. The Russia-based email provider is in the top 5 for fastest response time, top 5 most hackers thanked, top 5 fastest time to pay out bounties, and the top 5 most resolved reports.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • Grab

    Grab

    Ranking #15 is ride-sharing platform Grab with a total of over $300,000 in paid bounties, 328 resolved reports, and 200 thanked researchers.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • Coinbase

    Coinbase

    Ranked #16 is cryptocurrency trading platform Coinbase with over $300,000 in paid bounties and a top bounty of $20,000.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • Snapchat

    Snapchat

    Ranked #17 on HackerOne's ranking is Snapchat. The company's lauded for having a first response time to new bug reports of under a day.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • HackerOne

    HackerOne

    #18 is HackerOne itself, which also runs its own bug bounty program on its own platform and has paid researchers quite a few rewards since November 2013, when it first launched.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • Dropbox

    Dropbox

    #19 is one of HackerOne's early adopters, file-sharing platform Dropbox. The company can boast with over $275,000 in paid bounties and a top bounty of $23,058.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

  • VK

    VK

    Russian social platform VK is ranked #20 on HackerOne's top public bug bounty programs with over $265,000 in paid rewards, 379 thanked hackers, and 630 resolved reports.

    Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

    Caption by: Catalin Cimpanu

16 of 20 NEXT PREV
Catalin Cimpanu

By Catalin Cimpanu for Zero Day | June 20, 2019 -- 00:39 GMT (17:39 PDT) | Topic: Security

  • Verizon Media
  • Uber
  • PayPal
  • Shopify
  • Twitter
  • Intel
  • Airbnb
  • Ubiquiti Networks
  • Valve
  • GitLab
  • GitHub
  • Slack
  • Starbucks
  • Mail.ru
  • Grab
  • Coinbase
  • Snapchat
  • HackerOne
  • Dropbox
  • VK

These are the top 20 biggest, fastest, and most lucrative bounty programs on the HackerOne platform.

Read More Read Less

Coinbase

Ranked #16 is cryptocurrency trading platform Coinbase with over $300,000 in paid bounties and a top bounty of $20,000.

Published: June 20, 2019 -- 00:39 GMT (17:39 PDT)

Caption by: Catalin Cimpanu

16 of 20 NEXT PREV

Related Topics:

Security TV Data Management CXO Data Centers
Catalin Cimpanu

By Catalin Cimpanu for Zero Day | June 20, 2019 -- 00:39 GMT (17:39 PDT) | Topic: Security

Show Comments
LOG IN TO COMMENT
  • My Profile
  • Log Out
| Community Guidelines

Join Discussion

Add Your Comment
Add Your Comment

Related Galleries

  • 1 of 3
  • iVerify: Added security for iPhone and iPad users

    I'm usually wary of security apps, but iVerify by Trail of Bits is different. It comes highly recommended and offers a lot of features in a small download. ...

  • iStorage datAshur BT hardware encrypted flash drive

    FIPS 140-2 Level 3 compliant storage drive with wireless unlock feature and remote management. IP57 rated for dust and water resistance.

  • Netgear BR200 small-business router

    The Netgear BR200 Insight Managed Business Router has been designed to be easy to set up, and features a built-in firewall, VLAN management, and remote cloud monitoring, and can be ...

  • YubiKey 5C NFC: The world’s first security key to feature dual USB-C and NFC connections

    The YubiKey 5C NFC can be used across a broad range of platforms -- iOS, Android, Windows, macOS and Linux -- and on any mobile device, laptop, or desktop computer that supports USB-C ...

  • Apricorn Aegis Secure Key 3NXC

    The new Aegis Secure Key 3NXC builds on Apricorn's Secure Key 3z and Aegis Secure Key 3NX, taking the same proven form-factor and physical keypad, and adding something that users have ...

  • YubiKey 5Ci Clear Limited Edition

    Transparency in security.

  • Certo AntiSpy iPhone Spyware Detection

    Certo AntiSpy is not an app. Instead, it is a utility that you download and install on a Windows or Mac, and you use that to scan a backup of your iOS or iPadOS for subtle signs of intrusion. ...

ZDNet
Connect with us

© 2021 ZDNET, A RED VENTURES COMPANY. ALL RIGHTS RESERVED. Privacy Policy | Cookie Settings | Advertise | Terms of Use

  • Topics
  • Galleries
  • Videos
  • Sponsored Narratives
  • Do Not Sell My Information
  • About ZDNet
  • Meet The Team
  • All Authors
  • RSS Feeds
  • Site Map
  • Reprint Policy
  • Manage | Log Out
  • Join | Log In
  • Membership
  • Newsletters
  • Site Assistance
  • ZDNet Academy
  • TechRepublic Forums