Naked Security reported yesterday that the Department of Defense's pilot "Hack the Pentagon" bug bounty initiative was a success, with 138 unique, legitimate vulnerabilities revealed and therefore eligible for a bounty. One hacker earned the government's top prize of $15,000 for submitting multiple vulnerabilities – awards ranged down to $100. Site security flaws started arriving just 13 minutes after the program went live on April 18th.
The program cost $150,000 with roughly half paid in reward bounties.
The feds say it's a bargain. Hard to argue with that.
E-mail: firstname.lastname@example.org Phone: 703-359-0700
Digital Forensics/Information Security/Information Technology