Ok, everyone just calm-down, this is an invitation only event. On Wednesday the Pentagon invited outside hackers, who have been vetted, to test the cyber security of some public U.S. Defense Department websites as part of a pilot project next month, the first such program ever by the federal government.
“Hack the Pentagon” is modeled after similar competitions known as “bug bounties” conducted by many large U.S. companies, including United Continental holdings Inc (UAL.N), to discover security gaps in their networks.
Such programs allow cyber experts to find and identify problems before malicious hackers can exploit them, saving money and time in the event of damaging network breaches. “I am confident that this innovative initiative will strengthen our digital defenses and ultimately enhance our national security,” said Defense Secretary Ash Carter in a statement unveiling the pilot program.
He told reporters it was time for the Pentagon to learn from best practices across industry, especially since the military was “not getting good grades across the enterprise” for its level of cyber security.
“We can’t just keep doing what we’re doing. The world changes too fast; our competitors change too fast,” he said during a public discussion at the RSA conference.
DJ Patel, the White House’s chief data scientist and a former executive with eBay and LinkedIn, said bounties had become the fastest and most efficient way of securing networks at a time when software was becoming increasingly complex and more difficult to test. He went on to say, other federal agencies were watching the Pentagon project and could follow suit, which would further enhance collaboration and result in greater economies of scale.
“When people hear ‘bug bounty,’ they think we are just opening ourselves to attack, but what people forget is, we are always under attack these days,” he said. “By bringing crowds to the problem … you’re getting a jump on the curve.”
The Pentagon has long tested its own networks using internal “red teams,” but this initiative would open at least some of its vast network of computer systems to cyber challenges from across industry and academia.
Participants must be U.S. citizens and will have to submit to a background check (and marijuana test) before being turned loose on a predetermined public-facing computer system. The Pentagon said other more sensitive networks or key weapons programs would not be included, at least initially.
The initiative is being led by the Pentagon’s defense Digital Service, set up last November to bring experts from the tech sector into the military for short stints.
Read Article (Andrea Shalal | huffingtonpost.com | 03/02/2016)
I truly hope the system enhancements are a success. But enhancements to federal computer systems alone do not appear to be enough to meet the challenges of our world class competitors’ hackers.
The Digital Era is all pervasive; effecting Cultural, National & International laws as well as the General Public, Governments, Government Officials and even Law Enforcement. It’s up to each individual to get a little Tech-savvy for their own wellbeing and that of their loved ones.
We provide assistance in this endeavor, but need your funding support to do so.
Master Level High-Tech Webinars