vulnerability disclosure

Ongoing bug-bounty pilot pinpoints many vulnerabilities in DOD’s cyberspace

by

Through Hack U.S., the Pentagon is offering cash rewards for exposures of digital weaknesses.

DOD expands vulnerability disclosure program to contracting base in pilot

by

Forty-one defense contractors in the small-to-medium-size range participated in a vulnerability disclosure pilot that resulted in 1,015 reports, of which 401 were validated by system owners for remediation.

CISA launches platform to allow hackers to report flaws in federal tech

by

Agencies will use the shared service to receive security feedback from white-hat hackers around the world.

Laying the terms for partnerships with ethical hackers

by

With the backing of CISA, federal civilian agencies can lean on the expertise of ethical hackers as part of their security strategy — but first they need a VDP agreement.

CISA’s first shared-services offering is delayed by protest

by

The award of the vulnerability disclosure policy (VDP) platform contract is under protest from HackerOne.

CISA selects EnDyna for vulnerability disclosure platform shared service

by

The shared service is the first of three initial ones the agency will offer as a recently designated quality service management office.

TwitterFacebookLinkedInRedditGmail