You understand the concept of doing something that doesn't bring direct monetary benefit?
you understand the concept of zero days ?
companies should be better and if not, criminally liable for their bad code.
In other words, bootlicking the corpo-authoritarians?
He makes a point, though: bug bounties exist to incentivize people to find and report bugs to a company. We talk about white, gray, and black hats, roughly based on their level of ethics. For black hats – and some gray hats – money is one of the big reasons they look for vulnerabilities.