This is my favorite sort of email that we get about once a month in various forms... their title at the end is hilarious.
---
Subject: Found a security vulnerability on your website.
Hi Team,
I am Harris, a security researcher, and I have found a security vulnerability in your website outside a bug bounty program.
I can disclose all the vulnerabilities found and their proper fixes too, to make your website more secure.
Companies I helped have always been generous and helped me back with rewards in amounts they think are appropriate to the issues I have found. If you appreciate my help, I'd be happy to receive a bonus payment via PayPal, Bitcoin, Payoneer, or Bank Transfer.
---
Subject: Found a security vulnerability on your website.
Hi Team, I am Harris, a security researcher, and I have found a security vulnerability in your website outside a bug bounty program.
I can disclose all the vulnerabilities found and their proper fixes too, to make your website more secure.
Companies I helped have always been generous and helped me back with rewards in amounts they think are appropriate to the issues I have found. If you appreciate my help, I'd be happy to receive a bonus payment via PayPal, Bitcoin, Payoneer, or Bank Transfer.
Waiting for a positive response from your end.
Thanks and Regards,
Harris A
Certified Ethical Hacker