. home.aspx



US Department of Defense Expands Bug Bounty Efforts

October 24, 2018 / Sean Michael Kerner

The Department of Defense has found value over the past two years in engaging with hackers and is now expanding its crowdsourced security efforts with HackerOne, Synack and Bugcrowd. While it might seem counterintuitive, the U.S. Department of Defense has been actively encouraging hackers to hack the Pentagon since 2016, in an effort to identify software vulnerabilities. On Oct. 24, the DoD announced an expansion of its bug bounty efforts, awarding contracts to three managed bug bounty vendors: HackerOne, Synack and Bugcrowd.  HackerOne and Synack had been part of an October 2016 contract with the DoD for bug bounties, which is now being renewed and extended to bring Bugcrowd into the program.