HackerOne printed its 2018 Hacker Report, which examines the geography, demographics, expertise, instruments used, and motivations of practically 2,000 bug bounty hackers in 100 international locations.
HackerOne discovered that on common, top-earning moral hackers earn as much as 2.7 instances the common wage of a software program engineer of their respective house international locations. Additionally, hackers in India are incomes 16 instances greater than the common. And but, new information reveals that general hackers are much less motivated by financial beneficial properties, dropping from their first precedence to fourth precedence since 2016.
Moral hacking goes mainstream
Whereas moral hacking is quickly turning into mainstream, there are nonetheless obstacles to be overcome. Eighty-four % of the Forbes International 2000 doesn’t have a broadcast vulnerability disclosure coverage. Consequently, about 1 in 4 hackers haven’t reported a vulnerability they discovered as a result of the corporate had no channel to reveal it. Nonetheless, a mixed 72 % of hackers reported that corporations have gotten extra open to buying vulnerabilities than beforehand thought.
“Day-after-day, hackers exhibit the ability of the neighborhood by reporting hundreds of vulnerabilities to corporations and authorities businesses to make the Web safer for all of us,” mentioned HackerOne CEO Marten Mikos. “We’re blown away by the talent, ardour and integrity of those people proven on this report. The work of the moral hacker neighborhood is considerably lowering the danger of safety breaches.”
- 1 / 4 of hackers depend on reward for at the very least 50 % of their annual revenue, and 14 % say their earned reward represents 90-100% of their annual revenue. About 12 % of hackers on HackerOne make $20,000 or extra yearly from bug bounties, greater than 3 % make greater than $100,000 per yr and 1 % make greater than $350,000 yearly.
- Greater than 90 % of all profitable bug bounty hackers on HackerOne are underneath the age of 35. General, 45 % of HackerOne’s hackers are between the ages of 18 and 24.
- 37 % of hackers say they hack as a pastime of their spare time.
working alone, studying from others
Whereas practically a 3rd of hackers (30.6%) choose to work alone, 31.3% of hackers choose to learn blogs of different hackers and publicly disclose vulnerability outcomes as a way to study from them. 13 % of hackers generally labored with their friends, 9% recurrently labored with different hackers, 8.7% of hackers acted as mentors or mentors to different hackers and seven.1% labored as a part of a crew. As with different hackers, at the very least one bug report is filed.
There will be no higher time to turn out to be an moral hacker. Greater than 1,000 organizations together with Normal Motors, GitHub, Lufthansa, Nintendo, Spotify, Starbucks, the US Division of Protection and the worldwide hacker neighborhood work with the worldwide hacker neighborhood to quickly discover and repair safety vulnerabilities.