This article has been indexed from Threatpost
Some criminals package exploits into bundles to sell on cybercriminal forums years after they were zero days, while others say bounties aren’t enough .
Read the original article: Where Bug Bounty Programs Fall Flat