Monday, December 10, 2018
  • Directory-as-a-Service® Administration with PowerShell
  • Emotet trojan is back with a vengeance
  • VulnHub Machines Walkthrough Series: Brainpan – Part 2
  • It’s Time to Get Proactive on Energy Sector Security
  • How Internet Savvy are Your Leaders?

Security Boulevard

The home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chats
    • CISO Conversations
  • Library

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
SBN News Security Bloggers Network Vulnerabilities 

Home » Cybersecurity » SBN News » ‘Hack the Marine Corps’ Bug Bounty Program Announced by DoD

‘Hack the Marine Corps’ Bug Bounty Program Announced by DoD

by David Bisson on August 14, 2018

The U.S. Department of Defense (DoD) and HackerOne together announced the creation of a new bug bounty program called “Hack the Marine Corps.”

On 12 August, DoD kicked off its new vulnerability disclosure initiative at DEF CON 26 in Las Vegas, Nevada with a live hacking session. For the launch event, 100 ethical hackers hand-selected by the Department of Defense spent nine straight hours scouring the Marine Corps’ public-facing websites and services for vulnerabilities. Those security researchers, who worked alongside Marines from the U.S. Marine Corps Cyberspace Command (MARFORCYBER), filed 75 vulnerability reports during the hacking session and received a total of $80,000 in awards.

Maj.Gen. Matthew Glavy, commander of MARFORCYBER, said he’s pleased with the creation of the bug bounty program. As quoted in a press release:

Hack the Marine Corps allows us to leverage the talents of the global ethical hacker community to take an honest, hard look at our current cybersecurity posture. Our Marines need to operate against the best. What we learn from this program will assist the Marine Corps in improving our warfighting platform, the Marine Corps Enterprise Network. Working with the ethical hacker community provides us with a large return on investment to identify and mitigate current critical vulnerabilities, reduce attack surfaces, and minimize future vulnerabilities. It will make us more combat ready.

Hack the Marine Corps is the latest bug bounty program announced under the “Hack the Pentagon” digital security initiative. Since the creation of that challenge, security researchers have reported over 5,000 vulnerabilities discovered in government systems. They’ve done so as part of sub-programs of Hack the Pentagon including “Hack the Army” and “Hack the Defense Travel System (DTS).”

DoD designed Hack the Marine Corps to run on HackerOne’s platform and (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by David Bisson. Read the original post at: https://www.tripwire.com/state-of-security/vulnerability-management/hack-the-marine-corps-bug-bounty-program-announced-by-dod/

August 14, 2018August 14, 2018 David Bisson bug bounty, DoD, Latest Security News, Marines, Vulnerability Management
  • ← Nike Shoes Facebook Virus (Scam) – How to Remove It
  • Faxploit: Fax-Enabled Machines Easily Hacked Using a Fax Number →

Predict 2019 Virtual Summit

Featured Blog

Secure Code Warrior

Why financial institutions are leading the charge to upskill their developers in secure coding

Secure Code Warrior

Why SQL Injections Are The Cockroaches of the AppSec World (and how CISOs can eradicate them once and for all)

Secure Code Warrior

A Brighter Future For DevSecOps? It’s Closer Than You Think

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

Two Dozen Click Fraud Apps Found in Google Play
6 Ways to Improve Your Security Posture Using Critical Security Controls
Email Spam Campaign Targets U.S. Retail, Restaurant Sectors
5 Challenges Utilities Will Face in Preparing for New FERC Security Standards
3 Ways CISOs Can Boost Their Credibility Within the Enterprise
Business Continuity and Disaster Recovery: Your Organization’s Safety Plan
What is the Purpose of Active Directory?
An Update from San Francisco
What Cyberstalking Is and How to Prevent It
Don’t Get Phished – 7 Tips to Avoid This Common Cyber Attack

Upcoming Webinars

Thu 13

Inside a Docker Cryptojacking Exploit

December 13 @ 1:00 pm - 2:00 pm

More Webinars

Download Free eBook

Securing the Code: DevOps Security and AppSec

CISO/Security Vendor Relationship Series

CISO/Security Vendor Relationship Podcast

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

Major DNS Threats: Preventing DNS Hijacking and Leaks
Cybersecurity Data Security Industry Spotlight Security Boulevard (Original) 

Major DNS Threats: Preventing DNS Hijacking and Leaks

December 10, 2018 Zehra Ali | Yesterday 0
AI/ML in Security: Know What You’re Buying
Analytics & Intelligence Cybersecurity Industry Spotlight Security Boulevard (Original) 

AI/ML in Security: Know What You’re Buying

December 7, 2018 John Omernik | 3 days ago 0
6 Ways to Improve Your Security Posture Using Critical Security Controls
Cybersecurity Industry Spotlight Network Security Security Boulevard (Original) 

6 Ways to Improve Your Security Posture Using Critical Security Controls

December 6, 2018 Destiny Bertucci | 4 days ago 0

Top Stories

Two Dozen Click Fraud Apps Found in Google Play
Featured Malware Mobile Security News Security Boulevard (Original) Spotlight Threats & Breaches 

Two Dozen Click Fraud Apps Found in Google Play

December 7, 2018 Lucian Constantin | 3 days ago 0
Email Spam Campaign Targets U.S. Retail, Restaurant Sectors
Endpoint Featured Identity & Access Malware News Security Boulevard (Original) Spotlight 

Email Spam Campaign Targets U.S. Retail, Restaurant Sectors

December 7, 2018 Lucian Constantin | 3 days ago 0
North Korean APT Group Targets Academia via Malicious Chrome Extensions
Endpoint Featured Malware News Security Boulevard (Original) Spotlight Threats & Breaches Vulnerabilities 

North Korean APT Group Targets Academia via Malicious Chrome Extensions

December 6, 2018 Lucian Constantin | 4 days ago 0

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2018 MediaOps Inc. All rights reserved.

Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.