Should you respond to bug report emails?
A long standing client of ours received an email recently: "Hey , I just found a bug in your web and it can cause harm your web and Users so can we report here. then will i get bounty reward in PayPal or Bitcoin for security bug. Thanks, John Independent Security Resercher" We've seen similar emails come through with different