Bug bounties bring critical information to Web operators from cybersecurity researchers and hackers who receive a cash award—and often bragging rights—in exchange for information on software vulnerabilities that reduce risk for both the company and consumers, companies and security researchers told Bloomberg BNA.
The Pentagon and companies such as Facebook Inc. and United Airlines Inc. routinely provide the cash rewards to security researchers and white hat hackers in an effort to strengthen the companies’ websites and provide safe access for consumers.
“Most of the time everyone has the same goals—everyone should be safe,” Ryan Kalember, cybersecurity senior vice president at Proofpoint Inc., told Bloomberg BNA. “A cybersecurity researcher that is calling you and is obviously not extorting you is someone you should be engaging with,” he said.
“When you have a more proactive program around that and do have things like bug bounties, you make it clear to the world you want to engage in researchers directly and come to you directly instead of selling directly to highest bidder,” Kalember said. For the full article click here
from cyber security caucus http://ift.tt/1NBclBp
via IFTTT
No comments:
Post a Comment