YesWeHack Recenzje 4

If you are a bug bounty hunter be very careful about the evidence you will gather and the program you choose to work on. Some programs tend to apply fixes even after reporting and then claiming the issue does not exist to avoid paying. YesWeHack support will not back you up and will side with their customers. I would at least avoid programs with low rewards since they seem to be the ones who are more prone to this kind of behaviour.

A legal scam run by script kiddies who somehow don’t seem to understand how to run a business.

It left a very bad impression and a bitter aftertaste. The funny part is that I actually work on a red team, and clients gladly pay for exactly these kinds of findings ... just not platforms like YWH.

A complete waste of time, plus moderators with a money-grabbing mindset and the judgment skills of a broken toaster.

"The bug bounty industry is at a dangerous crossroads. When national infrastructure providers use 'AI-generation' as a baseless excuse to dodge critical vulnerability findings, they are burning the very foundation of digital trust.
​As a long-term researcher, I find the rising trend of 'AI-washing' manual expert work deeply alarming. When deep-dive source code audits and logic analyses are met with generic dismissals just to avoid responsibility, it pushes talent away from the ethical path.
​Companies must understand: State-sponsored actors and APT groups do not 'AI-wash' findings. They value and reward expertise to weaponize it. If you treat ethical researchers like scammers, you are indirectly handing over your security to the very entities you fear. You cannot build security while treating the people who provide it with condescension and lies."

Great company. Fair triage process unlike some.