Never miss a story

Get subscribed to our newsletter


×
Hackers have become an invaluable extension of the most trusted security teams. Pixabay

At a time when cyber attacks on businesses across industries are multiplying as they go digital, joining hacker-powered bug bounty and vulnerability disclosure programmes is the key to minimise such incidents and safeguard your key data, a top cyber security officer said on Tuesday.

Hacker-powered security is a technique that utilises collaboration with the hacker community to find unknown security vulnerabilities and reduce security risk. Popular examples include bug bounty programmes and vulnerability disclosure policies.


“Hackers have become an invaluable extension of the most trusted security teams, on a mission to find what others may have missed or could not see,” Alex Rice, Chief Technology Officer, HackerOne told IANS.

San Francisco-based HackerOne is a vulnerability coordination and bug bounty platform that connects businesses with cybersecurity researchers.

It develops bug bounty solutions to help organizations reduce the risk of a security incident by working with the world’s largest community of ethical hackers.


Goldman Sachs is works with hackers to identify vulnerabilities in their consumer websites. Pixabay

Back in May 2018, Goldman Sachs became the first investment bank to launch a vulnerability disclosure policy.

“In the first year of their programme, more than 23 vulnerabilities, each representing real-world risk to their customers and data, were safely resolved,” Rice noted.

Today, Goldman Sachs is working with hackers to identify vulnerabilities in their consumer websites.

“On average, their internal security team has resolved vulnerability reports within two months, and have responded to bug reports in as little as one minute, further resolving reports within one hour,” said Rice who co-founded HackerOne in 2012.

Food delivery platform Zomato has paid more than $100,000 (over Rs 70 lakh) to 435 hackers to date for finding and fixing bugs on its platform.

With the help of HackerOne’s bug bounty programme since July 2017, Zomato has successfully resolved 775 vulnerabilities report.

“Zomato security team is tasked with protecting sensitive information for over 55 million unique monthly visitors,” said HackerOne.

Hackers are no longer anonymous guns-for-hire. They are being embraced by everyone — from the insurance industry to government agencies.

In August, HackerOne revealed that hackers earned $21 million in just a year reporting vulnerabilities via various bug bounty opportunities as governments’ efforts to fix malware increased a whopping 214 per cent globally.

According to Rice, research continues to show us that most breaches occur from basic lapses in security hygiene.

“It is important that organisations have layered defences, and use basic cyber hygiene principles such as multi-factor authentication and password best practices, followed by a security programme that focuses on covering your entire attack surface,” Rice told IANS.

Software is eating the world and software has bugs.

“All organisations — financial institutions, healthcare organisations, e-commerce companies, big box stores, media companies, practically anyone — are going digital and are equally at risk. We’re all in this together and are more alike than we realize,” he maintained.


Zomato has paid more than $100,000 (over Rs 70 lakh) to 435 hackers to date for finding and fixing bugs on its platform. Pixabay

On the bright side, the number of hacker-powered security programmes is rapidly growing all over the world.

According to HackerOne’s “2019 Hacker-Powered Security Report”, Latin America saw record growth of 41 per cent over the previous year and Asia Pacific grew 30 per cent.

Today, six of the top 10 financial services organisations in North America, and companies like Goldman Sachs, PayPal and Lending Club, are working with HackerOne.

Rice said that in terms of vulnerabilities, it’s really important that organisations have an efficient system in place to identify vulnerabilities and apply patches in a timely manner.

“Unpatched machines are still the most common attack vector for cybercriminals. Outside of basic hygiene practices such as applying timely security updates, the most effective means of doing so is to leverage the power of the friendly hacker community or what we call ‘hacker-powered security’,” Rice noted.

To tackle cyber attacks from nation-state bad actors, government agencies around the world are launching bug bounty and vulnerability disclosure programmes – like the European Commission, the UK’s National Cyber Security Centre, Singapore’s Ministry of Defense, Singaporean Government Technology Agency, the US Department of Defense, including the Army, the Air Force and the Marine Corp.

Also Read- Cyber Threat Landscape To Worsen In 2020

In 2018, the number of hacker-powered security programmes in the federal government sector grew an impressive 214 per cent, according to HackerOne. (IANS)


Popular

IANS

In all the wedding excitement, it's easy to overlook the impact a wedding has on the environment.

By Prerana Agarwal Saxena

In all the wedding excitement, it's easy to overlook the impact a wedding has on the environment. While everyone is making their big fat Indian wedding dreams come true, they are also adding their carbon footprint and undue energy consumption. Modern couples are now looking for ways to have a wedding with a sustainably conscious mindset. It's become about incorporating less waste, locally sourced and seasonal food, natural materials over the use of plastic. Mindful wedding planning and decor includes the use of recycled paper and goods along with eco-friendly venue needs. Check out this quick guide to achieve a sustainably conscious wedding without compromising on luxury:

Choose locally sourced material to uplift artisans
Sustainable can be luxurious too, incorporate some native flavour into the decor and theme. With the use of locally sourced materials and local artisans coming into play, the wedding instantly becomes sustainable. Include the work of local vendors ensure minimal packaging requirements, thus saving on unnecessary plastic and lamination. It also decreases the need for transporting elements from other cities and hence lowers the carbon footprint. For instance, at one of our weddings, we made use of sand art for a setup in Jodhpur. This helped promote local work while also being environmentally friendly with zero wastage of other materials. In another instance from Rajasthan, the traditional glass-blown technique was used to build decor items while giving a cultural touch to the destination wedding.

sustainable sand art Sustainable can be luxurious too, incorporate some native flavour into the decor and theme. | Photo by Jason Coudriet on Unsplash

Keep Reading Show less
Photo by Hakan Nural on Unsplash

The vaccination was administered from 7 a.m. till 7 p.m. and the compiled data was made available late at night.

The Tamil Nadu health department has administered 16,43,879 lakh doses of vaccine in the second mega vaccination camp organised by it. The state public health department in a statement on Sunday said that this has taken the total vaccination to one crore since the beginning of September till date. The vaccination was administered from 7 a.m. till 7 p.m. and the compiled data was made available late at night.

The health department officials also said that as the state has almost exhausted its quota of vaccines, there would not be any vaccines on Monday. Regular vaccination will resume after the vaccine supplies arrive from New Delhi, officials said. The state health department had expected to vaccinate 15 lakh people on Sunday in 18,824 centres spread across primary health centres, anganwadis, noon meal centres, government hospitals, schools and some auditoriums.

person in white long sleeve shirt holding gray pen The health department officials also said that as the state has almost exhausted its quota of vaccines, there would not be any vaccines on Monday. | Photo by Mat Napo on Unsplash

Keep Reading Show less
IANS

Hanisha Kapoor, COO, ArchiesBeauty.com shares makeup trends experimented by these Bollywood divas throughout 2021 for inspiration.

Festivals are just around the corner and while you brainstorm about OOTDs (outfit of the day), don't forget the right makeup. Hanisha Kapoor, COO, ArchiesBeauty.com shares makeup trends experimented by these Bollywood divas throughout 2021 for inspiration. While some stuck to the classics, others mixed it up... take a look:

The Classic Red Lip
We don't see a future where classic red lips go out of fashion. The right way to achieve this celebrity look is to focus on accentuating your lips and keeping the rest of the face minimal. Give your lips a good scrub to plump them, moisturize and follow it up with a red lip liner to define the shape of your lips. Now go on with the perfect shade of red and finish your look with a slick of eyeliner, minimal concealer, and foundation.

Keep reading... Show less