https://sputnikglobe.com/20220422/hack-dhs-bug-bounty-program-identifies-122-cybersecurity-vulnerabilities-1094981501.html
'Hack DHS' Bug Bounty Program Identifies 122 Cybersecurity Vulnerabilities
'Hack DHS' Bug Bounty Program Identifies 122 Cybersecurity Vulnerabilities
Sputnik International
WASHINGTON (Sputnik) - The now-concluded bug bounty program to test the defenses of the Department of Homeland Security’s (DHS) cybersecurity infrastructure... 22.04.2022, Sputnik International
2022-04-22T22:38+0000
2022-04-22T22:38+0000
2023-02-10T09:03+0000
us
department of homeland security (dhs)
hack attack
hackers
bounty
cybersecurity
https://cdn1.img.sputnikglobe.com/img/07e6/04/16/1094981475_0:0:3073:1728_1920x0_80_0_0_0751f80531ef6d0a057ea84339008dc6.jpg
“Today, the Department of Homeland Security (DHS) announced the results of its first bug bounty program,” the release said on Friday. “Through the ‘Hack DHS’ program, vetted cybersecurity researchers and ethical hackers are invited to identify potential cybersecurity vulnerabilities in select external DHS systems.”The DHS explained in the release that in the first phase of this program, more than 450 vetted security researchers identified 122 vulnerabilities, of which 27 were determined to be critical.Participants in the bug bounty program were paid $125,600 to find and identify existing vulnerabilities, the release said.DHS is the first federal agency to expand its bug bounty program to find and report vulnerabilities across all public-facing information system assets, the release said.The goal of “Hack DHS,” which was launched in December 2021, is to develop a prototype that can be used by other government agencies and organizations spreading across of government so that each entity can strengthen the resilience of their cybersecurity architecture, the release also said.During the second phase of the three-phase program, the vetted cybersecurity researchers and ethical hackers will participate in a live, in-person hacking event, the release added.However, during the third and final phase, DHS will identify lessons officials and staff have learned and intent to apply to bug bounty programs they host in the future, according to the release.
Sputnik International
feedback@sputniknews.com
+74956456601
MIA „Rossiya Segodnya“
2022
Sputnik International
feedback@sputniknews.com
+74956456601
MIA „Rossiya Segodnya“
News
en_EN
Sputnik International
feedback@sputniknews.com
+74956456601
MIA „Rossiya Segodnya“
https://cdn1.img.sputnikglobe.com/img/07e6/04/16/1094981475_0:0:2731:2048_1920x0_80_0_0_160f481c4391e604b523569e250cdf0e.jpgSputnik International
feedback@sputniknews.com
+74956456601
MIA „Rossiya Segodnya“
us, department of homeland security (dhs), hack attack, hackers, bounty, cybersecurity
us, department of homeland security (dhs), hack attack, hackers, bounty, cybersecurity
'Hack DHS' Bug Bounty Program Identifies 122 Cybersecurity Vulnerabilities
22:38 GMT 22.04.2022 (Updated: 09:03 GMT 10.02.2023) WASHINGTON (Sputnik) - The now-concluded bug bounty program to test the defenses of the Department of Homeland Security’s (DHS) cybersecurity infrastructure revealed 122 openings and flaws that IT specialists can close and fix, DHS officials said in a press release.
“Today, the Department of Homeland Security (DHS) announced the results of its first bug bounty program,” the release said on Friday. “Through the ‘Hack DHS’ program, vetted cybersecurity researchers and ethical hackers are invited to identify potential cybersecurity vulnerabilities in select external DHS systems.”
The DHS explained in the release that in the first phase of this program, more than 450 vetted security researchers identified 122 vulnerabilities, of which 27 were determined to be critical.
Participants in the bug bounty program
were paid $125,600 to find and identify existing vulnerabilities, the release said.
DHS is the first federal agency to expand its bug bounty program to find and report vulnerabilities across all public-facing information system assets, the release said.
The goal of “Hack DHS,” which was launched in December 2021, is to
develop a prototype that can be used by other government agencies and organizations spreading across of government so that each entity can strengthen the resilience of their cybersecurity architecture, the release also said.
During the second phase of the three-phase program, the vetted cybersecurity researchers and ethical hackers will participate in a live, in-person hacking event, the release added.
However, during the third and final phase, DHS will identify lessons officials and staff have learned and intent to apply to bug bounty programs they host in the future, according to the release.