AI Reshapes Bug Bounties: Humans Remain Crucial

AI is changing bug bounty programs, but human judgment remains crucial. Experts say automation speeds up discovery, but human validation and context are still needed for findings. Some programs are seeing changes; for example, the Internet Bug Bounty stopped accepting new submissions in April, and GitHub now offers swag instead of cash for some reports. Google has also noted a surge in AI-generated bug reports. Despite these shifts, demand for bug bounties is growing. HackerOne's CEO, Kara Sprague, confirms that even AI-native companies recognize the need for these programs. Submissions to HackerOne doubled year-over-year in April, with 70% of researchers using AI. The bottom line is that while AI helps find bugs faster, human expertise is essential for serious issues and career recognition. This means new opportunities for those in cybersecurity.