Pentagon prepares for hackers in April and May

The Department of Defense is to launch a pilot program that will allow qualified participants to “Hack the Pentagon”.

Following the landmark announcement at the start of March that the Pentagon will allow researchers to test the department’s cybersecurity profile, the DoD has partnered with HackerOne to run a one month pilot during April and May which will allow hackers to target several DoD public websites, which will be identified to the participants as the beginning of the challenge approaches. Critical, mission-facing computer systems will not be involved in the program.

The Hack the Pentagon bug bounty pilot will start on Monday, April 18 and end by Thursday, May 12. Qualifying bounties will be issued by HackerOne no later than Friday, June 10. Individual bounty payments will depend on a number of factors, but will come from a $150,000 fund for the program.

Eligible participants must be US nationals and not on the Department of Treasury's Specially Designated Nationals list. Successful participants who submit qualifying vulnerability reports will undergo a basic criminal background screening to ensure taxpayer dollars are spent wisely. Participants will have the ability to opt-out of any screening, but will forgo bounty compensation.

US Secretary of Defense Ash Carter said that the initiative will put the department's cybersecurity to the test “in an innovative but responsible way”.

“I encourage hackers who want to bolster our digital defenses to join the competition and take their best shot,” he said.

Katie Moussouris, chief policy officer at HackerOne told Infosecurity that this could influence other governments to follow and offer similar initiatives. She said “I absolutely expect that after watching a successful bug bounty pilot with the US government, other governments and other non-traditional software companies in other industries will embrace the wisdom and mutual benefits of working with hackers. Hack the planet!”

The registration site is now live and can be accessed at https://hackerone.com/hackthepentagon

Pentagon Launches Month of Bug Finding

Dan Raywood

You may also like

#DEFCON L0pht Reunite to Find Security Unimproved

Over 50,000 Vulnerabilities Discovered in DoD Systems Through Bug Bounty Program

Security Holes Make Home Routers Vulnerable

#WebSummit: Growing Acceptance of Ethical Hacking

Hackers target Cambridge in the name of Julian Assange

What’s hot on Infosecurity Magazine?

Insider Threats Surge 14% Annually as Cost-of-Living Crisis Bites

Cybersecurity Pros Urge US Congress to Help NIST Restore NVD Operation

FBI Warns of Massive Toll Services Smishing Scam

Russia and Ukraine Top Inaugural World Cybercrime Index

How to Backup and Restore Database in SQL Server

How to Open and View OST Files Without Outlook

Banning Ransomware Payments Will Do More Harm Than Good

Palo Alto Networks Warns About Critical Zero-Day in PAN-OS

Cybersecurity Pros Urge US Congress to Help NIST Restore NVD Operation

Women Experience Exclusion Twice as Often as Men in Cybersecurity

CISA Urges Immediate Credential Reset After Sisense Breach

Windows: New 'BatBadBut' Rust Vulnerability Given Highest Severity Score

Is MFA Enough? Strategies for Next-Level Identity Security in 2024

Beyond Passwords: Securing the Digital Age with MFA, 2FA, and Passwordless Authentication

Disinformation Defense: Protecting Businesses from the New Wave of AI-Powered Cyber Threats

Adapting to Tomorrow's Threat Landscape: AI's Role in Cybersecurity and Security Operations in 2024

Untangling the Web: Navigating Third-Party Risk in a Hyperconnected World

Bouncing Back: Building Organizational Resilience in the Face of Cyber-Attack

Infosecurity Magazine Spring Online Summit 2024: Day One

Infosecurity Magazine Spring Online Summit 2024: Day Two

Russia’s Midnight Blizzard Accesses Microsoft Source Code

I-Soon GitHub Leak: What Cyber Experts Learned About Chinese Cyber Espionage

LockBit Takedown: What You Need to Know about Operation Cronos

Women in Cybersecurity at Infosecurity Europe 2024

Pentagon Launches Month of Bug Finding

Written by

You may also like

What’s hot on Infosecurity Magazine?