The arrest of Sasser’s author proves bounties work to catch cyber vandals. Now, if the security industry would just stop egging them on. When Microsoft first announced its “bounty” program late last year, many security experts condemned the initiative as a mere publicity stunt: a marketing tactic designed to distract gullible users from the “real issue” with Microsoft products. With a No Honor Among Thieves mindset, I predicted that the program would yield positive results and that some unlucky malware author would be ratted out by bounty-seeking friends/family/peers, and held responsible for his or her actions. Full Story