It’s an initiative through which individuals who identify and report bugs in a program, code and application are rewarded. It helps in finding vulnerabilities before they become security issues. Intel, Facebook, Cisco, Apple, Dropbox and others have been running such programs successfully. Payments range from a few hundred dollars to thousands of dollars.