Secunia offers researchers to publish results for them

A Danish computer security company, called Secunia, offered computer security researchers the service of disclosing and publishing research results to companies whose security was tested.

The service called The Secunia Vulnerability Coordination Reward Programme (SVCRP) has a goal to alleviate researchers of the hassle with reporting their findings according to company policy and forms for vulnerability detection. Secunia doesn’t want to be a mediator between the researcher and a client company while doing business; their goal is to offer researchers one more way to publish their findings. The company will pay found vulnerabilities in commercial systems, which doesn’t include systems freely available on the internet, like Google and Facebook, and client will pay researchers directly. Some companies, however, don’t allow, in other words don’t pay researchers if they publish their vulnerability findings somewhere else, like Googlefor example. More details can be found at COMPUTERWORLD web site.