With online shopping being one of the easiest ways to get items from around the globe, PayPal has become one of the most preferred methods of payment. PayPal promises to keep your personal information safe and provide online shoppers a secure environment in which to make payments. These promises are severely compromised when there are bugs in their site, as an incentive to existing account holders or anyone who would like to earn a little recognition they have their Bug Bounty Program, which by rights should acknowledge and/or reward anyone who reports a bug. When 17 year old Robert Kugler reported a bug in the XSS coding he expected to be rewarded for his finding, yet PayPal has not rewarded nor acknowledged Kugler for his finding because he is not 18 years or older, even though there is no age restriction mentioned in their policies for the Bug Bounty Program. Other companies have reward programs and Kugler has received monetary rewards from Mozilla for bugs reported in Firefox. A reward or at least acknowledgement should go to Kugler for his findings!
Source: PC World
Leave a Reply