bug bounty | Georgia Tech Procurement Assistance Center

Pentagon is planning another bug bounty contract

May 22, 2018 By Nancy Cleveland

The Pentagon is considering offering a broad bug bounty contract that would accommodate a variety of different bounty models on either short-term or continuous timeframes, according to contracting documents released earlier this month.

The move comes after two years during which the Defense Department and military services have launched five high-profile bug bounties targeting the Pentagon, Air Force, Army and the department’s travel booking system.

Bug bounties are contests in which ethical hackers are offered cash rewards for finding hackable vulnerabilities in websites, apps and other software. So far, the Pentagon and military services have paid out more than $400,000 for valid bug reports.

Keep reading this article at: https://www.nextgov.com/cybersecurity/2018/05/pentagon-planning-another-bug-bounty-contract/148292/

GSA tech office launches bug bounty program

May 17, 2017 By Nancy Cleveland

The cybersecurity company that ran a bug bounty program for the Army and is running ongoing programs for the Pentagon and Air Force will run a similar program for the government’s technology user experience wing, that office announced Friday.

The program run by HackerOne will offer cash rewards ranging from $300 to $5,000 to security researchers who spot dangerous vulnerabilities in websites and applications run by the General Services Administration’s Technology Transformation Service.

TTS did not give a start date for the program.

Keep reading this article at: http://www.nextgov.com/cybersecurity/2017/05/gsa-tech-office-launches-bug-bounty-program/137817

DoD wants you to hack the Pentagon again and again

October 28, 2016 By Nancy Cleveland

The Defense Department plans to make Hack the Pentagon-style bug bounty challenges available in a new contract vehicle.

The department contracted HackerOne and Synack to create a contract vehicle that allows DoD components and services to launch such competitions to discover and remediate website vulnerabilities.

hack-the-pentagon

Though tech companies have long used bug-bounty programs to root out security issues, the Pentagon and the Defense Digital Service experimented with it for the first time in the spring. The numbers of Hack the Pentagon are impressive: 1,400 vetted hackers tested five websites, 138 unique vulnerabilities were found and fixed, and it cost $150,000 with about half going to pay the participants. The department said hiring a contractor for similar efforts would have cost about $1 million.

Keep reading this article at: http://www.nextgov.com/defense/2016/10/dod-wants-you-hack-pentagon-again-and-again/132539

Pentagon is planning another bug bounty contract

GSA tech office launches bug bounty program

DoD wants you to hack the Pentagon again and again

Contracting News

SBA scorecard shows federal government continues to prioritize small business contracting

OMB releases guidance related to small business goals

OMB issues guidance on impact of injunction on government contractor vaccine mandate

Changes coming to DOD’s Cybersecurity Maturity Model Certification under CMMC 2.0

Judge issues nationwide injunction halting enforcement of COVID-19 vaccine mandate

Contracting Tips

Contractors must update EEO poster

The risk of organizational conflicts of interest

The gap widens between COFC and GAO on late is late rule

Are verbal agreements good enough for government contractors?

CMMC 2.0 simplifies requirements but raises risks for government contractors

GTPAC News

VA direct access program events in 2022

Sandia National Laboratories seeks small business suppliers

Navy OSBP hosting DCAA overview (part 2) event Jan. 12, 2022

Navy OSBP hosting cybersecurity “ask me anything” event Dec. 16th

State of Georgia hosting supplier systems training on January 26, 2022

Georgia Tech News

Undergraduate enrollment growth reflects inclusive excellence

Georgia Tech delivers $4 billion in economic impact to the State of Georgia

Georgia Tech awards first round of seed grants to support team-based research

Georgia Tech announces inaugural Associate Vice President of Corporate Engagement

DoD funds Georgia Tech to enhance U.S. hypersonics capabilities