Security Bounty Program

HackerOne takes an axe to its bug bounty rewards

HackerOne has significantly reduced the reward rates for its Internet Bug Bounty (IBB) program across all severity levels. The program is currently paused while HackerOne evaluates adjustments to maximise value for researchers and sponsors. These changes follow instances where researchers reported receiving substantially lower payouts for vulnerabilities they submitted previously.

Apple's AI boss Craig Federighi has a message for OpenAI, Anthropic, and other AI rivals

Craig Federighi didn't mince words at WWDC 2026. Apple's software chief used one of the company's biggest stages of the year to call out the AI industry—not by name, but with enough specificity that nobody was left guessing. "Some appear to be racing forward, seemingly pursuing AI for the sake of AI, without clear regard for the people it's ultimately meant to serve," he said.

Microsoft reaches for olive branch after public dustup with 0-day researcher

Microsoft has moved to calm an increasingly noisy backlash from the security community after appearing to threaten legal action against a researcher who spent the past several weeks dumping Windows zero-days onto the internet. In a statement published on Monday, Redmond said it has "no intention to pursue action against individuals conducting or publishing security research”, a noticeably softer position than the one it adopted just days earlier when it condemned a string of public...

Disgruntled 0-day hunter 'humiliated' by Microsoft pledges 'bone shattering drop' as Redmond calls cops

Claude Fable 5

Claude Fable 5 and Claude Mythos 5 Today we’re launching Claude Fable 5: a Mythos-class1 model that we’ve made safe for general use. Fable 5’s capabilities exceed those of any model we’ve ever made generally available.