The Department of Defense has conducted a bug bounty program with ethical hackers in an effort to identify vulnerabilities in the DoD Information Network, Fifth Domain reported Monday.
Ethical hacking firm HackerOne took part in DoD’s “Hack the Proxy” effort and discovered medium/low to high severity vulnerabilities in the department’s virtual private networks and proxies. Last month, the Pentagon allocated around $33.8K for valid vulnerabilities crowdsourced from participants around the world.
"Validating capabilities, closing previously unknown vulnerabilities, and enforcing standards improve our ability to conduct multidomain military operations,” said U.S. Cyber Command’s Master Sgt. Michael Methven. “Hack the Proxy is an important approach that leverages crowd-sourced talent for an outside-in view of our vulnerabilities.”
Cybercom sponsored the event in partnership with HackerOne, Defense Digital Service and DoD.