Pentagon to reward hackers for finding security problems

Lili Zheng,

Hacking the Pentagon may sound like something that might land a person behind bars, it’s legal for a select group of hackers and could actually lead to a big pay-day.

The initiative, known as “Hack The Pentagon”, is the first cyber bug bounty program in the history of the federal government.

A group of hackers screened and hand-picked by the federal government are searching for vulnerabilities on Department of Defense (“DOD”) websites. ABC News reports more than 500 people are currently enrolled in the program which started on Monday and will run through May 12.

Chris Woodward, an account technician at Cards Technology, says it’s an approach many big companies have used in the past.

“I know Microsoft, Google, yahoo and apple have all done this in the past,” Woodward explains. “I don’t think their rewards or pots for whoever wins are as big, but it’s definitely a common thing.”

The payout for hackers able to find what the U.S. Department of Defense calls “vulnerabilities” is 150,000 dollars.

According to the list on the Defense Department’s website, there are nearly 500 web pages monitored by the DOD.

Woodward says it’s done through a process called penetration testing.

“When you build something and make it secure from a group of minds, it’s nice to have outside source come in…see if they can’t break through it,” He explains. “If they can, you get to learn what their holes are, patch them up, be stronger from it.”

The initiative is being led by the department’s Defense Digital Service. That team, launched by Secretary of Defense Ash Carter, consists of engineers and data experts.

Select hackers have reportedly been vetted, registering and submitting to background checks.

A statement from Secretary Carter on the department’s website reads “I am always challenging our people to think outside the five-sided box that is the Pentagon. Inviting responsible hackers to test our cybersecurity certainly meets that test.”

Woodward tells 47ABC he believes this initiative can ultimately strengthen digital defenses.

“Any chance we have to find out our own vulnerabilities first and get them patched up before somebody has that opportunity who’s not going to be up to any good, it’s always a benefit,” He says.

While the hackers are participating in a controlled and limited duration program, we’ve learned they will not be working with the Pentagon’s top secret systems.

47ABC also reached out to the DOD for a comment. There has not been a response as of 9 p.m. Monday.

Categories: Local News, Tech, Top Stories
Tags: , , , , ,

Related Posts: