Bug bounty programs have been around in various forms for more than 15 years. But, aside from the amount of money that s paid out when bugs are fixed, there hasn t been much raw data available about the the way the programs operate. Mozilla actually has two bug bounty programs: one for its Firefox browser and the other for a specific subset of its Web properties. So far, Mozilla has paid out $104,000 in rewards through the Web bounty program, and nearly 75 percent of that money has gone to high-priority bugs.
Source: https://threatpost.com/behind-numbers-mozillas-bug-bounty-program-092811/75701/