Carter Announces Program for Hackers to Disclose DOD Web Vulnerabilities

Defense Secretary Ash Carter today launched a process for ethical hackers to alert the Pentagon about any vulnerabilities they discover on Defense Department websites.

The vulnerabilities disclosure program comes out the same day DOD launches its Hack the Army bug bounty program, which offers cash prizes for vulnerabilities hackers find in a select group of high-value websites.

The goal of both programs is to provide a clear process for internet security researchers to disclose dangerous vulnerabilities to the Pentagon without fearing they’ll be sued for violating the sites’ copyright protections or laws such as the Computer Fraud and Abuse Act.

Continue reading: