They're called Bug Bounty Programs and are being used by companies like Google, Microsoft, Facebook and UBER to farm out some of their cyber security — offering $500, $1500, even $15,000 each time a hacker can break in.