The Pentagon is considering offering a broad bug bounty contract that would accommodate a variety of different bounty models on either short-term or continuous timeframes, according to contracting documents released earlier this month.
The move comes after two years during which the Defense Department and military services have launched five high-profile bug bounties targeting the Pentagon, Air Force, Army and the department’s travel booking system.
Bug bounties are contests in which ethical hackers are offered cash rewards for finding hackable vulnerabilities in websites, apps and other software. So far, the Pentagon and military services have paid out more than $400,000 for valid bug reports.
Keep reading this article at: https://www.nextgov.com/cybersecurity/2018/05/pentagon-planning-another-bug-bounty-contract/148292/