Tech

Bug bounty industry, helped by federal business, is growing up fast

The industry — which basically hires and sells the services of freelance hackers who are paid to find weaknesses in systems or products — is seeing a period of rapid growth, in part because of early successes in the federal market.

By FedScoop Staff

July 28, 2017

(Getty Images)

The bug bounty industry — which basically hires and sells the services of freelance hackers who are paid to find weaknesses in systems or products — is seeing a period of rapid growth, in part because of early successes in the federal market.

Chris Bing of Cyberscoop takes a close look at the leaders of the three companies that are making the most noise in the niche industry: Bugcrowd, HackerOne and Synack. All three firms boast platforms that privately funnel information about software and hardware bugs to their customers so that affected parties can fix software flaws.

Over the last year, the three companies have each expanded in size and influence due to private investors betting big. Significant contracts with the Defense Department, General Services Administration, U.S. Air Force and Army, quickly popularized the disruptive industry, even though the premier brands are still in many ways developing their business strategies and identities.

Bug bounty industry, helped by federal business, is growing up fast

More Like This

ICE pursuing privacy approvals related to controversial phone location data

House Modernization panel advances bill to improve CRS’s data access in first-ever markup

Bug bounties, constituent casework automation among ideas touted at Congressional Hackathon

Top Stories

CISA’s chief data officer: Bias in AI models won’t be the same for every agency

DOJ seeks public input on AI use in criminal justice system

DHS picks OMB official to lead its new AI Corps

GSA taps Login.gov deputy director to take top role next month

Scientists must be empowered — not replaced — by AI, report to White House argues

404 page: the error sites of federal agencies

White House hopeful ‘more maturity’ of data collection will improve AI inventories

Generative AI could raise questions for federal records laws

More Scoops

Ongoing bug-bounty pilot pinpoints many vulnerabilities in DOD’s cyberspace

DOD expands vulnerability disclosure program to contracting base in pilot

DARPA makes hardware bug bounty platform open source

Hack the Army event yields 102 critical security gaps

Army launches ‘Hack the Army 3.0’ with more targets for cybersecurity researchers

CISA’s first shared-services offering is delayed by protest

What one bug bounty platform’s FedRAMP authorization means for the industry

Latest Podcasts

Bug bounty industry, helped by federal business, is growing up fast

GSA’s Login.gov platform gets a new director

DOD’s Ashley Elizabeth Evans on effectively implementing AI

DHS’ Chris Kraft on emerging trends in AI and automation

Tech

Defense

Cyber

Acquisition