Ah, that is so touching that Mårten is not in it for the money. Seriously, dude? Humans are greedy. The problem with "hacker powered security" is the complacency that it is driving into corporate AppSec programs and in some cases disrupting them to the point of extinction and that is dangerous. Also, missing is the fundamental point that the bug bounty program concept is flawed. Hackers do not like the scope, limitations, and what qualifies as a vulnerability before a pay out is awarded. Listen to the chatter and you'll see the dissent in the ranks.