>>11577001The few people knowledgeable enough to do so already do this for a wide variety of other companies. The problem is friendly-hackers could make millions off selling a flaw to a malicious entity, who would then gain access to a shitload of computers to make a hundred million. While illegal, this is hard to trace.
The pool of knowledgeable cybersecurity programmers (more knowledgeable than knowing how to sysadmin, i.e., familiar with current-day encryption methods on a deep level, which also implies familiarity with how these things work on an assembly level) is like 20 thousand across the world. The only reason why there isn't more is because it requires both actual curiosity and high intellect. Undergraduate degrees in CS teach you nothing but the names of these encryption methods. Out of the small PHD student pool specializing in cybersecurity, maybe half of them actually know what they're doing. Most of them are content working for companies for 300k a year and providing menial input on cybersecurity issues rather than going through the strain of freelancing for code bounties. This means only poor people typically go for these kinds of hack bounties, but poor people typically wouldn't have the experience and knowledge to do so. They are rare.
Hence most serious hacking potential (beyond retard traps) these days come from Chinese gov. employed groups and the rare hacker groups from SA.