Ramona Adams
The Defense Department has chosen HackerOne and Synack to create a contract vehicle that will work to help DoD components and services launch “bug bounty” programs.
DoD said Thursday the contract vehicle will facilitate efforts to standardize a crowdsourced approach to digital security through challenges designed to identify and address vulnerabilities on department-run websites.
The department seeks to launch additional challenges similar to the Hack the Pentagon bug bounty program that HackerOne helped carry out in April.
Hack the Pentagon attracted more than 250 ethical hackers and led to the discovery of 138 “legitimate” vulnerability reports, ExecutiveGov reported June 20.
Defense Secretary Ashton Carter established the Defense Digital Service to lead Hack the Pentagon and the team will work with DoD components and government agencies to support the execution of future programs.
DoD noted the contract vehicle can also help other departments and agencies to adopt and implement similar programs.
