Crowdsourced pentesting is not without its issues

Security researchers engaged in crowdsourced pentesting are not paid for the work, but per found vulnerability, and they can easily spend a day searching for vulnerabilities and find nothing. Finding no vulnerabilities is actually the default result for most security researchers today, and you are paid absolutely nothing for your time.

Read full article on Help Net Security