Defense

Latest DOD bug bounty pays out $80,000

The bug bounty program at the Defense Department exposed more than 100 security vulnerabilities in its travel booking system.

By FedScoop Staff

June 1, 2018

(DoD / U.S. Army Sgt. James K. McCann / Flickr)

A recent bug bounty program at the Defense Department exposed more than 100 security vulnerabilities in its travel booking system, earning white-hat hackers $80,000.

HackerOne, a company that has supported bug bounty programs for the Air Force, Army and the Pentagon at large, ran Hack the DTS (Defense Travel System), which lasted 29 days and concluded April 29, 2018.

DTS is used by millions of Pentagon employees around the world making it one of the wide-reaching pieces of enterprise software in the U.S. government.

“Securing sensitive information for millions of government employees and contractors is no easy task,” Reina Staley, Chief of Staff and Hack the Pentagon program manager at Defense Digital Service, said in a statement. “No system is infallible, and this assessment was the first time we employed a crowd-sourced approach to improve the security aspect of DTS.”

Read more about the bug bounty on CyberScoop.

Latest DOD bug bounty pays out $80,000

More Like This

MPEs gain momentum for sharing information with allied partners

State Department officials say they’re trying to set the tone globally on AI usage, as lawmakers question if it’s enough

Bug bounties, constituent casework automation among ideas touted at Congressional Hackathon

Top Stories

Scientists must be empowered — not replaced — by AI, report to White House argues

White House hopeful ‘more maturity’ of data collection will improve AI inventories

404 page: the error sites of federal agencies

Generative AI could raise questions for federal records laws

Oracle approved to handle government secret-level data

Cybersecurity executive order requirements are nearly complete, GAO says

GSA administrator: Generative AI tools will be ‘a giant help’ for government services

State Department encouraging workers to use ChatGPT

More Scoops

Ongoing bug-bounty pilot pinpoints many vulnerabilities in DOD’s cyberspace

DOD expands vulnerability disclosure program to contracting base in pilot

Hack the Army event yields 102 critical security gaps

Army launches ‘Hack the Army 3.0’ with more targets for cybersecurity researchers

What one bug bounty platform’s FedRAMP authorization means for the industry

Air Force wants cyber experts to ‘make a living’ off hacking its tech

Hack the Army 2.0 brings 146 new security vulnerabilities to light

Latest Podcasts

Latest DOD bug bounty pays out $80,000

Leveraging modern access management to achieve zero trust

The role of the federal chief AI officer

Los Angeles CIO discusses how AI and cloud technologies transform urban public services

Tech

Defense

Cyber

Acquisition