Security researcher quips maybe it's time to get 'a real job' after being paid meagre $1,000 bug bou

We have a lot to thank security researchers for. Between , and exposing , these white hat hackers tend to make our digital existence safer in the long run. Surely some compensation from the multi-million dollar corporations caught in a virtually compromising position is the least these techies could ask for?

recently found a number of high severity vulnerabilities affecting Apple's Safari browser and Sequoia OS. This included an absolute doozy that could've allowed bad actors to bypass Same Origin Policy in a UXSS (Universal Cross-site Scripting) style attack. Despite this vulnerability being so severe , Renwa say they were only paid $1,000 for reporting the issue to Apple.

with regards to their security update for Safari 18.4, crediting Renwa for finding a number of issues and explaining they've since addressed CVE-2025-30466 specifically through "improved state management."

However, the reward feels like a small sum for spotting an issue that could've exposed an untold number of Apple users to hackers, especially when you consider the fact $1,000 doesn't even cover rent in a number of US cities. In their, Renwa quips, "I should quit this bug bounty thing and get a real job."

Rent anxiety aside, $1,000 is especially low considering Apple has placed a bounty of up to for the finding of other flaws, such as . So, it's hardly the case that Apple is stingy overall. Then there's the fact uncovering a number of medium and low severity Chrome vulnerabilities, with some even netting upwards of $2,000 for these relatively less critical issues. With this in mind, it's especially baffling that a vulnerability rated as high as 9.8 would be deemed such low value by Apple.

Speaking of, let's take a tour through some of the bug bounties offered by various other major players. For instance back in 2021, for reporting a Steam Wallet infinite funds flaw. Almost a decade earlier the same company had for highlighting an exploit that allowed hackers to generate all the Steam keys they could ever want.

And it's not just Valve with a track record of putting its money where its mouth is: Back in 2022, Rockstar that helped fix the game's slow loads. And then last year, for anyone who could find holes in Valorant's Vanguard anticheat (though admittedly this was intended more as a show of confidence in their own tech than paying security researchers what they're worth).

But Renwa isn't the only one getting undercut as of late. Remember I mentioned up top? The core issue was reported and partially fixed multiple times over the years, but security researcher was only paid $350 when they discovered the issue back in September 2023. According to , their group of security researchers then saw $3,000 in total for reporting the same core issue years later.

Considering that all it takes to spell disaster for businesses both big and small is or , I for one think it wouldn't hurt to more consistently pay security researchers what ทดลองเล่นสล็อตฟรี they're worth.

Best gaming PC 2025

👉👈

1. Best โปรโมชั่นสล็อต overall:

2. Best budget:

3. Best compact:

4. Alienware:

5. Best mini PC: