key finding #1
Critical Vulnerabilties are Earning Higher Bounties.
Figure 1: Bug bounty reward competitiveness for critical vulnerabilities from May 2017 to April 2018. Organizations in the 99th percentile, rewarding $20,000 on average, are rewarding bounties higher on average than 99% of the programs on HackerOne.