Connect with us

Hi, what are you looking for?

Tech

CISA launches platform to let hackers report security bugs to US federal agencies

The Cybersecurity and Infrastructure Security Agency has launched a vulnerability disclosure program allowing ethical hackers to report security flaws to federal agencies.

The platform, launched with the help of cybersecurity companies Bugcrowd and Endyna, will allow civilian federal agencies to receive, triage and fix security vulnerabilities from the wider security community.

The move to launch the platform comes less than a year after the federal cybersecurity agency, better known as CISA, directed the civilian federal agencies that it oversees to develop and publish their own vulnerability disclosure policies. These policies are designed to set the rules of engagement for security researchers by outlining what (and how) online systems can be tested, and which can’t be.

It’s not uncommon for private companies to run VDP programs to allow hackers to report bugs, often in conjunction with a bug bounty to pay hackers for their work. The U.S. Department of Defense has for years warmed to hackers, the civilian federal government has been slow to adopt.

Bugcrowd, which last year raised $30 million at Series D, said the platform will “give agencies access to the same commercial technologies, world-class expertise, and global community of helpful ethical hackers currently used to identify security gaps for enterprise businesses.” Bugcrowd founder Casey Ellis told TechCrunch that the directive is “another watershed moment for the role that hackers play as the Internet’s Immune System. Bugcrowd team is incredibly proud to partner with CISA/DHS on taking this initiative forward with the US government.”

The platform will also help CISA share information about security flaws between other agencies.

The platform launches after a bruising few months for government cybersecurity, including a Russian-led espionage campaign against at least nine U.S. federal government agencies by hacking software house SolarWinds, and a China-linked cyberattack that backdoored thousands of Microsoft Exchange servers, including in the federal government.

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

You May Also Like

World News

Insomnia is the most common sleep disorder in the global population. Therefore, it is a problem that many people suffer or have suffered...

World News

George Soros and Bill Gates are part of a consortium acquiring a British developer of rapid-testing technology, including for Covid-19 and tropical diseases,...

Tech

If you parked your car in one of the thousands of parking spots across Calgary, there’s a good chance you paid the Calgary Parking...

Investing

ForexMay 27, 2021 02:04AM ET (C) Reuters. By Peter Nurse Investing.com — The dollar edged higher in early European trade Thursday, finding support from...

Disclaimer: Yourmorningvoice.com it's managers and its employees (collectively "The Company") do not make any guarantee or warranty about what is advertised or above. Information provided by this website is for research purposes only and should not be considered as personalized financial advice. Copyright © 2021 Your Morning Voice. All Rights Reserved