Bug bounty scheme uncovers 150 vulnerabilities in US Marine Corps websites

Nearly 150 security vulnerabilities have been discovered in US Marine Corps websites and related services during a bug bounty challenge that saw ethical hackers awarded over $150,000.

Hack The Marine Corps is the sixth public bounty program by the US Department of Defense (DoD) and bug bounty platform HackerOne. More than 100 ethical hackers took part in the scheme over a three-week period, and found nearly 150 unique vulnerabilities for the U.S. Marine Corps Cyberspace Command team.

“What we learn from this program assists the Marine Corps in improving our warfighting platform. Our cyber team of Marines demonstrated tremendous efficiency and discipline, and the hacker community provided critical, diverse perspectives,” said Major General Matthew Glavy, commander of U.S. Marine Corps Forces Cyberspace Command.

Read more…
Source: ZDNet