A month of bugs is a strategy used by security researchers to draw attention to the lax security procedures of commercial software corporations.
Researchers have started such a project for software products where they believe corporations have shown themselves to be unresponsive and uncooperative to security alerts. For example, when a company does not fix the error after a Responsible disclosure, one may find and disclose one security vulnerability each day for one month.
The original "Month of Bugs" was the Month of Browser Bugs (MoBB) run by security researcher H. D. Moore. [1]
Subsequent similar projects include: