Kaspersky lab announced the launch of public bug bounty program ,one few offered by the software vendor in the computer security industry yesterday. This bug bounty program is generally offered by many websites that provides compensation or rewards for reporting bugs. The bounty begins today on Hacker one platform in which the first phase will run for six months. The company says that it will be rewarding $ 50,000 for fixing vulnerabilities in vendor's flagship Consumer and business products, Kaspersky endpoint security and Kaspersky Internet security. The bounty program augments kaspersky internal processes for evaluating it's software. The company almost spent time with Hacker one allocating internal resources and refining process for accepting bug reports. The company says that bug bounty are quickly becoming a best practice among companies. Kaspersky lab is one of the first to go public ahead of the others and it's an indication of the maturity of this program.Hacker one has 60,000 hackers registered on its platform and resolved more than 26,000 vulnerabilities. Finally Rice said, bug bounty programs are the sign that everything under is mature and in shape. And added that you can't launch unless you have architectural reviews a SDLC and other critical possesses in place. Organization think they have it but don't really know until they try it out. Some organization that have bounty program and their processes are less mature than they thought the first 10 hackers they have invited have created Six months worth of work.
No comments:
Write comments