14:15 CET on the 3rd November 2011 Entry written by Secunia.
The article ‘Secunia Offers to Coordinate Vulnerability Disclosure on Behalf of Researchers’ by Lucian Constantin discusses how Secunia’s new vulnerability coordination program will not only reward security researchers for reporting software vulnerabilities, it will also simplify the reporting process.
The Secunia Vulnerability Coordination Reward Program (SVCRP) has been created to complement other industry programs, rather than replace them. Importantly, Secunia gives researchers even more options, filling the gap left by other programs by accepting the vulnerabilities that they reject.
Secunia accepts vulnerabilities regardless of their classification and as long as they are in off-the-shelf products. Flaws discovered in online services such as Facebook, for example, do not qualify. Carsten Eiram, Secunia’s Chief Security Specialist talks more about SVCRP throughout the article.