House › Vulnerabilities

DoD Declares Last Outcomes of ‘Hack US’ Bug Bounty Program

By Ionut Arghire on September 30, 2022

Tweet

The US Division of Protection (DoD) and HackerOne this week introduced the outcomes of the Hack US one-week bug bounty problem that ran from July four to July 11, 2022.

Launched by the Chief Digital and Synthetic Intelligence Workplace (CDAO) Directorate for Digital Providers and the Division of Protection Cyber Crime Middle (DC3), the problem was an extension of DoD’s vulnerability disclosure program (VDP) working on the HackerOne bug bounty platform.

The DoD introduced it was providing a complete bounty pool of $110,000, representing $75,000 in rewards for submitted vulnerability stories, and $35,000 for bonus awards.

This week, the division stated that your complete bounty pool was exhausted. A complete of 267 moral hackers participated within the problem, 139 of them being new to DoD’s VDP.

In complete, the moral hackers submitted 648 stories in the course of the Hack US occasion, together with 349 actionable stories, the DoD introduced.

In line with DoD VDP director at DC3 Melissa Vice, most of the submitted stories “may have been vital had they not been recognized and remediated throughout this bug bounty problem”.

She additionally identified that info disclosure was essentially the most generally recognized vulnerability sort in the course of the seven-day occasion, adopted by improper entry management and SQL injection.

Vice additionally stated that DoD will use the insights gained in the course of the problem to deal with the basis trigger of those safety points and stop their malicious exploitation.

“The vulnerabilities found by the hacker neighborhood throughout Hack US will supply extra air cowl on all of the belongings that assist keep US nationwide safety, and insights from stories will assist inform how the DoD approaches figuring out future threats,” HackerOne co-founder and CTO Alex Rice stated.

Associated: DoD Declares Outcomes of Vulnerability Disclosure Program for Protection Contractors

Associated: California Man Convicted for Stealing Tens of millions From DoD by way of Phishing Scheme

Associated: Microsoft Paid $13.7 Million by way of Bug Bounty Applications Over Previous 12 months

Get the Day by day Briefing

• Most Current
• Most Learn

• Hack Places Latin American Safety Businesses on Edge
• Canon Medical Product Vulnerabilities Expose Affected person Info
• What’s Occurring With Cybersecurity VC Investments?
• CISA Points Steerage on Transitioning to TLP 2.0
• DoD Declares Last Outcomes of ‘Hack US’ Bug Bounty Program
• Microsoft Confirms Exploitation of Two Alternate Server Zero-Days
• Chinese language Cyberespionage Group ‘Witchetty’ Updates Toolset in Current Assaults
• Cisco Patches Excessive-Severity Vulnerabilities in Networking Software program
• Microsoft Alternate Assaults: Zero-Day or New ProxyShell Exploit?
• NSA Cyber Specialist, Military Physician Charged in US Spying Instances

Searching for Malware in All of the Unsuitable Locations?

First Step For The Web’s subsequent 25 years: Including Safety to the DNS

Tattle Story: What Your Laptop Says About You

Be in a Place to Act By Cyber Situational Consciousness

Report Reveals Closely Regulated Industries Letting Social Networking Apps Run Rampant

2010, A Nice 12 months To Be a Scammer.

Do not Let DNS be Your Single Level of Failure

The right way to Determine Malware in a Blink

Defining and Debating Cyber Warfare

The 5 A’s that Make Cybercrime so Engaging

The right way to Defend Towards DDoS Assaults

Safety Budgets Not in Line with Threats

Anycast – Three Causes Why Your DNS Community Ought to Use It

The Evolution of the Prolonged Enterprise: Safety Methods for Ahead Pondering Organizations

Utilizing DNS Throughout the Prolonged Enterprise: It’s Dangerous Enterprise

Orbit Brain

https://orbitbrain.com/

Orbit Brain is the senior science writer and technology expert. Our aim provides the best information about technology and web development designing SEO graphics designing video animation tutorials and how to use software easy ways
and much more. Like Best Service Latest Technology, Information Technology, Personal Tech Blogs, Technology Blog Topics, Technology Blogs For Students, Futurism Blog.