The latest vulnerability trends report published by the crowdsourced security platform Bugcrowd reveals that this community of hackers, composed of “white hats”, recorded a 30% increase in the submission of web vulnerabilities to the platform compared to 2022.
In addition, it recorded an 18% increase in API vulnerability submissions, a 21% increase in Android vulnerability submissions, and a 17% increase in iOS vulnerability submissions, as reported by BetaNews.
The public sector was the one that experienced the fastest growth in crowdsourced security last year, with a 151% increase in vulnerability submissions and a 58% increase in Priority 1 (P1) rewards for finding critical vulnerabilities. The financial services industry and the government sector offered the highest average payments for P1 vulnerability submissions.
In addition, the most successful programs were those that offered higher rewards, with gratifications that reached in some cases $10,000 or more for finding P1 vulnerabilities. Open scope programs received 10 times more P1 vulnerabilities than limited scope ones.
The report also examines how different hacker roles contribute to crowdsourced security, and the ways in which crowdsourced security platforms can provide powerful alert systems to discover vulnerabilities.