Cyber Vulnerabilities

Dead cockroach on table showing the need to design right crowdsourced security testing model for bug bounties

The Romance of Bug Bounties

July 16, 2019

Beyond the challenges around risk and uncertainty, can bug bounties really deliver on their promise? Even as crowdsourced security testing continues to gain acceptance, what’s important is designing the right model to increase efficiency and avoid diminishing marginal returns. Read More

Console on data center rack showing new cyber security directive which requires U.S. federal agencies to patch vulnerabilities twice as fast

Cyber Security News

New Cyber Security Directive Forces Federal Agencies to Patch Vulnerabilities Twice as Fast

May 10, 2019

New cyber security directive from DHS has cut mandatory time for U.S. federal government agencies to patch vulnerabilities considered critical from 30 to 15 days, failure to do so may result in administrative penalties. Read More

View of mainframe in data center showing cyber vulnerabilities uncovered by GAO audit

Cyber Security News

GAO Audit Uncovers Cyber Vulnerabilities in Pentagon Weapons Systems

October 20, 2018

GAO audits carried out between fiscal years 2012-2017 have discovered significant cyber vulnerabilities in the U.S. Department of Defense’s top weapons systems, reflecting a misguided approach that does not take into consideration basic cyber security. Read More

Hacker team successfully hacking vulnerable voting machines to change presidential election outcome

Cyber Security News

Voting Machines Vulnerable to Hacks That Could Change Presidential Election Outcome

October 15, 2018

Recent DEFCON Voting Village report showed that some of the most popular and widely used voting machines vulnerable to hacking and that their security in the upcoming election is anything but assured. Read More

Image showing rows of data tapes representing U.S. government revealing vulnerabilities equities process

Cyber Security News

U.S. Government Opens Up Vulnerabilities Equities Process, Problem Solved?

November 21, 2017

The U.S. government reveals the Vulnerabilities Equities Process which decides if vulnerability data is released or gets stockpiled as cyber weapons. Read More

Image of a dead bug on keyboard representing how the Hack the Air Force bug bounty program has found 207 vulnerabilities

Cyber Security News

Hack the Air Force Bug Bounty Program Yields 207 Vulnerabilities

August 10, 2017

For 24 days, 272 hackers pounded the Air Force's key public websites. The result? A cool 207 vulnerabilities were found, resulting in a $130,000 payday for the White Hats. Read More

Image of wolves hunting representing the 'Hack the Air Force' bug bounty program for white hats

Cyber Security News

Bugs and Bombs – Why White Hats Want to ‘Hack the Air Force’

May 1, 2017

So how does the United States Air Force with over 5,000 aircraft in its inventory make sure that it’s online security is top notch? It’s simple – it invites people to hack its systems. Read More

Image of open sign on wooden door representing companies in Asia being open to engaging the global community of independent white hats

Cyber Security Insights

Should Companies in Asia Engage the Global Community of Independent White Hats?

February 19, 2016

As the world becomes more complex non-traditional approaches to ensuring data security and protection must be evaluated. In this article Wei Chieh, the founder of SWARMNETICS draws a parallel between how we treat open source software and the Asian organisational attitude toward White Hat hackers (or ‘independent security researchers’) as assets that might help to stem the tide of security breaches that Asian companies face today. Read More