The US Army has detailed the results of its first bug bounty programme, which invited security experts and hackers to find flaws in the military’s websites, networks, and databases.<\/p>\n
The\u00a0Hack The Army bounty was deemed a success, with over 400 bug reports submitted. 118 of these reports were\u00a0unique and actionable, stated Threat Post<\/strong><\/a>.<\/p>\n “Participants who found and reported unique bugs that were fixed were paid upwards of $100,000,” stated the report.<\/p>\n 371 people were invited to take part in the programme, 25 of whom were government employees.<\/p>\n One researcher discovered two vulnerabilities on the goarmy.com website – which in isolation were not considered high level.<\/p>\n When chained together, though, the user could “access, without authentication, an internal Department of Defense website”.<\/p>\n \u201cThey got there through an open proxy, meaning the routing wasn\u2019t shut down the way it should have been, and the researcher, without even knowing it, was able to get to this internal network, because there was a vulnerability with the proxy and with the actual system,\u201d stated a post published on HackerOne<\/strong><\/a>.<\/p>\n The vulnerabilities have since been addressed.<\/p>\n The US Army has detailed the results of its first bug bounty programme.<\/p>\n","protected":false},"author":23,"featured_media":123802,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[27],"tags":[40800,32720],"class_list":["post-195592","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","tag-bug-bounty","tag-us-army"],"_links":{"self":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/195592"}],"collection":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/users\/23"}],"replies":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/comments?post=195592"}],"version-history":[{"count":1,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/195592\/revisions"}],"predecessor-version":[{"id":195596,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/195592\/revisions\/195596"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/media\/123802"}],"wp:attachment":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/media?parent=195592"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/categories?post=195592"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/tags?post=195592"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}Big vulnerability<\/h3>\n
Now read:\u00a0Security geek in Canada takes revenge on laptop thief<\/a><\/h3>\n","protected":false},"excerpt":{"rendered":"