So a few weeks ago here in Belgium we have a new policy: Belgian Act on the Protection of Whistleblowers which allows security researchers (ethical hackers) to hack on companies with good intentions… (according to some conditions) but legally without permission beforehand.
We used to go to jail or had the possibility to pay a fine for helping companies with their security issues, so that totally changed <3
How are the laws in your country about this?
Blog:
Not dangerous at all, there are some conditions of course, for example reporting the vulnerability also towards the CCB (Centre of Cybersecurity Belgium). They will follow-up on it and protect you also
