Pages:
Author

Topic: Lack of bug bounties from gambling platforms - page 6. (Read 798 times)

hero member
Activity: 952
Merit: 662
Most of gambling sites are prone to hacking? AFAIK since I'm joined this forum from the beginning until right now, I don't see any trustworthy casinos get hacked. Unlike centralized exchanges where there's always one exchanges will get hacked every year.

I don't think casinos have the most secured system, maybe the reason why there's no many casinos get hacked is coins from gambling are considered as high illicit money.

Bug bounties might not be needed if they haven't get hacked, the funds will mostly used for advertisement or marketing.
hero member
Activity: 1820
Merit: 537
Why aren't gambling websites using bug bounties to test-run their platform security? I haven't seen any gambling platform doing this, maybe that's why most gambling websites became prone to hacking? If I am wrong what gambling project do you think have the most secured system?, peace.

I'm sure that big casinos are doing that thing to test the security of their site from time to time. They're aware that the possibility of getting attacked by hackers is too big so for sure, they're finding ways to test their security, especially those who have experienced hacking before. It's one of the important things that a website is protecting because, without the guarantee of security, they will surely have their reputations ruined.
hero member
Activity: 2870
Merit: 574
Vave.com - Crypto Casino
Why aren't gambling websites using bug bounties to test-run their platform security? I haven't seen any gambling platform doing this, maybe that's why most gambling websites became prone to hacking? If I am wrong what gambling project do you think have the most secured system?, peace.
I think it might be because gambling websites already have their own security team to deal with and anticipate any vulnerabilities on their website.
But I think I've seen one or more casinos write an article about giving prizes to those who can find vulnerabilities on the website.
I don't know if the site could find the vulnerability and in the end, the casino site gave the prize.
Or maybe if the casino or even someone discovers the vulnerability, they don't make it public.
hero member
Activity: 2366
Merit: 793
Bitcoin = Financial freedom
Why aren't gambling websites using bug bounties to test-run their platform security? I haven't seen any gambling platform doing this, maybe that's why most gambling websites became prone to hacking? If I am wrong what gambling project do you think have the most secured system?, peace.

Casinos maybe having the dedicated team to monitor their security system and even if there is any vulnerability and you found it then surely you can contact the casino support or email them and hope you will be given with reward.

Personally I feel why the casinos doesn't have such bounties for public is to avoid getting bad impression and unnec attacks into their security system.
sr. member
Activity: 2618
Merit: 439

FortuneJack I remember launched a bug bounty in the forum back 2020 https://bitcointalksearch.org/topic/bug-bounty-on-fortunejack-get-rewarded-for-finding-bugs-5259299
It was the first I've seen but mostly is for the user's experience.

So far there was no incident of casino getting hack.
It wasn't about vulnerabilities where hackers will examining their codes for security. But I think they will be happy to pay someone who can warn them about the vulnerabilities if they do penetration testing.



 
There are also some services that offers Bug bounty services but yeah Only FortuneJack put a campaign for bug Bounty and yes they are successful in this task and now their site is running good without any or at least without major bug problems .

I also believe that New gambling sites must conduct the same bounty for the betterment of their site in long term , this is also to show how serious is their site and having business not only for profit but for servicing their players.
legendary
Activity: 3318
Merit: 1247
Bitcoin Casino Est. 2013
Why aren't gambling websites using bug bounties to test-run their platform security? I haven't seen any gambling platform doing this, maybe that's why most gambling websites became prone to hacking? If I am wrong what gambling project do you think have the most secured system?, peace.

I think the real serious ones have hired a team to continuously monitor the security of their websites because the bigger the website is with a lot of databases and other critical infrastructure the better the cyber security team should be.They the serious gambling platform do this but of course they do it in private and they do not need to disclose this information by making it going public,this is a secret of course between the penetration testers team hired to try the security of the site and offer improvement when found bugs,that is why you don't see it.
legendary
Activity: 2268
Merit: 2050
A Bitcoiner chooses. A slave obeys.
Why aren't gambling websites using bug bounties to test-run their platform security? I haven't seen any gambling platform doing this, maybe that's why most gambling websites became prone to hacking? If I am wrong what gambling project do you think have the most secured system?, peace.

As someone already mentioned in an above post, most casino owners do not bother writing their own code from scratch. Why? For the same reason why they do not like it when people start winning big money. Greed, basically. The owners would rather buy some white label code and add some fancy user experience design of their own without changing what runs the games underneath. And from a perspective of cost, its really the smart thing to do. Unless you want to create something which is unique. But why would anyone want a unique casino? Clone copies make the same money.

And those clone copies have gotten so advanced and audited all this time that bug bounties do not make much sense. Its just too hard to find a bug in something like that.
legendary
Activity: 1820
Merit: 2700
Crypto Swap Exchange
It's a very interesting topic, and one I think merits further discussion. Maybe the casinos are using "old school" methods for testing software, or maybe their vulnerability tests are just not as well known. I'm sure there's a ton of people willing to work on bug bounties. But in the end, it really comes down to the casino's incentive. If the casino has a system in place that fixes bugs and closes vulnerabilities quickly, then they likely don't see any reason to offer a bug bounty. Basically, their cost-benefit analysis says that it's not worth the time and effort to offer a bounty program. If they don't have any kind of bug bounty program, it's probably because they don't see much value in having external parties help them make their systems more secure. However, if the casino has a poor security record, then they may be more willing to offer one in order to improve their security profile.
copper member
Activity: 2324
Merit: 2142
Slots Enthusiast & Expert
The problem is that tons of gambling websites buy white-label solutions for their sites. The situation is like when you build a website with WordPress and you've been notified that there are vulnerabilities on your site, what will you do? You just wait for the next WordPress security patch and pray it will solve your problem. There's no incentive to fix the white-label product since you buy it and hope it works OOB.

If you want to do bug bounty, try to contact the white-label provider or sites that have proprietary code.
sr. member
Activity: 1988
Merit: 268
20BET - Premium Casino & Sportsbook
can you list the hacked gambling sites maybe i missed the news or i am right that so far i have never seen any hacked crypto gambling sites and they all look safe till date i would love to see the list to avoid them in future to play there, I also think that not many gambling sites hold bug bounty events for their gambling sites because what I know seems to be that gambling sites have a strong security system

If I am wrong what gambling project do you think have the most secured system?
maybe gambling sites that use web3 can be safer
legendary
Activity: 1652
Merit: 1208
Gamble responsibly
Security bug bounty are the reward given to hackers after the code of a software for an application or a platform has been created and have finished work on. These hackers would test for vulnerabilities to see if there is no bug. If there is any bug known to them, they would fixed it. After bug fixed, the software would be available for users.

Is that not the work of developers to check for vulnerabilities by all means? Or a site would have to first pay to developers and later pay for hackers for it. I do not know much about that though, but I know that some sites do that too. Despite all the hack I have been hearing about, I have played on many gambling sites, and recently most especially on this forum, the gambling sites are getting more successful in a way they can lay customers money.

Even if I do not know much about how security bug bounties is with gambling sites, what that matters is that the gambling sites are getting successful day by day and able to pay their customers and rendering their customers good services.

What that matters most is to use a trustworthy gambling sites and you are good.
hero member
Activity: 2800
Merit: 595
https://www.betcoin.ag

FortuneJack I remember launched a bug bounty in the forum back 2020 https://bitcointalksearch.org/topic/bug-bounty-on-fortunejack-get-rewarded-for-finding-bugs-5259299
It was the first I've seen but mostly is for the user's experience.

So far there was no incident of casino getting hack.
It wasn't about vulnerabilities where hackers will examining their codes for security. But I think they will be happy to pay someone who can warn them about the vulnerabilities if they do penetration testing.



 
sr. member
Activity: 952
Merit: 275
Why aren't gambling websites using bug bounties to test-run their platform security? I haven't seen any gambling platform doing this, maybe that's why most gambling websites became prone to hacking? If I am wrong what gambling project do you think have the most secured system?, peace.
Pages:
Jump to: