Synack Archives

DARPA’s new Toolbox Initiative offers non-production licenses for the latest and greatest tech to performers, like chips and processors.

DARPA makes hardware bug bounty platform open source

The agency hopes that the system will help white-hat hackers to spot flaws in chip designs.

Jul 6, 2021 By Jackson Barnett

What one bug bounty platform’s FedRAMP authorization means for the industry

HackerOne beat its competitors to federal cloud services authorization, allowing it to deliver the kind of vulnerability disclosure platform sought for agencies governmentwide.

May 26, 2020 By Dave Nyczepir

Tech. Sgt. Christopher Shamburger, 27th Special Operations Maintenance Squadron weapons load crew chief, logs in data into a computer during a weapons load on an MQ-9 Reaper aircraft at Cannon Air Force Base, N.M., Sept. 10, 2018. Shamburger is the lead crew member and is in the position of the ‘one-man’ role which is responsible for overseeing the entire load. (U.S. Air Force photo by Senior Airman Luke Kitterman)

Air Force enlists ethical hackers to target maintenance system from the inside

The Air Force wanted to see just how much "damage" or "malice" hackers could do from the inside.

Apr 4, 2019 By Billy Mitchell

The Defense Department issued a custom “challenge coin” for one of the Hack the Pentagon pilot programs in 2016. (Defense Digital Service / Twitter)

DOD expands Hack the Pentagon program to cover hardware, systems

DOD tapped cybersecurity firms Synack, HackerOne and Bugcrowd to provide vetted hackers for continual assessments of defense websites, hardware and physical systems.

Oct 24, 2018 By Carten Cordell

Vicki Hildebrand, Department of Transportation — Vicki Hildebrand participates in a FedTalks panel discussion Aug. 21, 2018, in Washington, D.C. (FedScoop)

DOT grateful for extra hands that bug bounty program provided, CIO says

The department recently joined the trend of federal bug bounty programs, which boost cybersecurity resources in ways that traditional methods probably can't.

Sep 7, 2018 By Carten Cordell

Pentagon considers continuous bug bounties that could test sensitive, private systems

"Assets could include closed networks, software-embedded devices, proprietary source code, or other private or internal systems not generally accessible via the public Internet," a new RFI says.

May 21, 2018 By Billy Mitchell

Bug bounty industry, helped by federal business, is growing up fast

The industry — which basically hires and sells the services of freelance hackers who are paid to find weaknesses in systems or products — is seeing a…

Jul 28, 2017