1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • US Department of Defense invites hackers to help harden its secur

    From TechnologyDaily@1337:1/100 to All on Tue Jul 5 12:00:04 2022
    US Department of Defense invites hackers to help harden its security systems

    Date:
    Tue, 05 Jul 2022 10:48:05 +0000

    Description:
    New bug bounty program goes live in an effort to weed out vulnerabilities.

    FULL STORY ======================================================================

    The US government is tapping into the expertise of the hacking community in
    an effort to tighten up its cybersecurity protections.

    Earlier this week, the Chief Digital and Artificial Intelligence Office (CDAO), the Directorate for Digital Services and the Department of Defense Cyber Crime Center (DC3) jointly launched Hack US, a bounty-hunting program aimed at identifying high-severity flaws in government systems.

    As reported by VentureBeat , the Department of Defense (DoD) has a budget of some $110,000 for white-hat hackers that discover dangerous flaws. Critical severity reports will earn hackers $1,000 a piece, high severity ones $500, and there's a $3,000 reward for those in additional special categories.
    Armies of hackers

    Speaking to the publication, Casey Ellis, founder and CTO at Bugcrowd, says tapping into the communitys potential makes sense, given that the attackers often work in groups and generally outnumber the defenders.

    It takes an army of adversaries to outsmart an army of allies, and many organizations are tapping into the community of millions of good-faith
    hackers around the world who are skilled, ready, and willing to help, Ellis said. Read more

    These are the best ransomware protection services right now


    Google is upping its Linux bug bounty prize


    HackerOne employee stole bug reports and collected the bounties

    The good folks at DoD DC3 have been running a vulnerability disclosure
    program for many years with great diligence and success, so to see them 'upgrade' this to a paid bug bounty program makes a lot of sense, Ellis said.

    But its not just about the numbers of attackers sifting through code for
    flaws - its also about the number of flaws. According to the VentureBeat report, the average organization has more than 30,000 vulnerabilities on its attack surface, which is a lot more than what a small internal security team can handle.

    Consequently, almost half (44%) of organizations arent confident they can properly secure all of their endpoints , even with the best cybersecurity solutions in place. These are the best malware removal software right now

    Via: VentureBeat



    ======================================================================
    Link to news story: https://www.techradar.com/news/us-department-of-defense-invites-hackers-to-hel p-harden-its-security-systems/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)