312-50V13 · Question #280
312-50V13 Question #280: Real Exam Question with Answer & Explanation
The correct answer is B: Bug bounty program. Bug bounty programs are the widely recognized term for vulnerability disclosure initiatives hosted on platforms like HackerOne, Bugcrowd, and Synack, where companies offer financial rewards ("bounties") to security researchers who responsibly discover and report vulnerabilities i
Question
What is the common name for a vulnerability disclosure program opened by companies In platforms such as HackerOne?
Options
- AVulnerability hunting program
- BBug bounty program
- CWhite-hat hacking program
- DEthical hacking program
Explanation
Bug bounty programs are the widely recognized term for vulnerability disclosure initiatives hosted on platforms like HackerOne, Bugcrowd, and Synack, where companies offer financial rewards ("bounties") to security researchers who responsibly discover and report vulnerabilities in their systems. Option A ("vulnerability hunting program") is not a recognized industry term, though it loosely describes the activity. Options C and D ("white-hat hacking" and "ethical hacking") describe the type of hacker or broader practice of authorized security testing, not the specific structure of a reward-based disclosure program. These terms are related concepts but refer to categories of activity, not the formal program name.
Memory tip: Think of the word "bounty" - just like a bounty hunter gets paid to find a target, a bug bounty hunter gets paid to find bugs. The platform (HackerOne) is essentially the "bounty board" connecting companies with researchers.
Topics
Community Discussion
No community discussion yet for this question.