I remember asking for this ages ago. It will brighten up our profiles and flatter our egos, so clearly it’s important.
At the moment the charity hero and “top 10” or “top 100” seem to be the only badges… we should add vulnerability specific badges… Here are a few quick suggestions but I’m sure there’s potential for loads:
XSSer - When you’ve found over X bugs in the XSS category
SQL ninja - as above, but for SQL… could even sub-categorise them … blind sql ninja anyone?
Mobile maniac (or break them down into Android or iOS maniac?) -> For vulnerabilities found in native mobile apps
What do you think about it bugcrowd?