South Africa keeps rates unchanged after unpredictable vote    Israel's c.bank chief: IDF shouldn't get 'blank check'    Egypt's gold prices fall on May 30th    KOTRA organises Egypt-Korea cooperation seminar on electronics industry    MSMEDA encourages enterprise owners to shift to formal sector: Rahmi    Ancient Egyptians may have attempted early cancer treatment surgery    Indian rupee to slip on rising US yields, dollar    Egypt, China strengthen ties on 10th anniversary of strategic partnership    Israel takes control of Philadelphia Corridor along Gaza-Egypt border    Egypt reaffirms commitment to African cooperation at AfDB Meetings    Germany approves carbon transport, storage proposals    Thailand seeks entry into BRICS    Abdel Ghaffar discuss cooperation in health sector with General Electric Company    Grand Egyptian Museum opening: Madbouly reviews final preparations    Valu Partners with Magdi Yacoub Heart Foundation to streamline donations for New Cairo centre    Kremlin accuses NATO of direct involvement in Ukraine conflict as fighting intensifies    Madinaty's inaugural Skydiving event boosts sports tourism appeal    Tunisia's President Saied reshuffles cabinet amidst political tension    US Embassy in Cairo brings world-famous Harlem Globetrotters to Egypt    Instagram Celebrates African Women in 'Made by Africa, Loved by the World' 2024 Campaign    US Biogen agrees to acquire HI-Bio for $1.8b    Egypt to build 58 hospitals by '25    Giza Pyramids host Egypt's leg of global 'One Run' half-marathon    Madinaty to host "Fly Over Madinaty" skydiving event    World Bank assesses Cairo's major waste management project    Egyptian consortium nears completion of Tanzania's Julius Nyerere hydropower project    Sweilam highlights Egypt's water needs, cooperation efforts during Baghdad Conference    Swiss freeze on Russian assets dwindles to $6.36b in '23    Egyptian public, private sectors off on Apr 25 marking Sinai Liberation    Debt swaps could unlock $100b for climate action    Amal Al Ghad Magazine congratulates President Sisi on new office term    Financial literacy becomes extremely important – EGX official    Euro area annual inflation up to 2.9% – Eurostat    BYD، Brazil's Sigma Lithium JV likely    UNESCO celebrates World Arabic Language Day    Motaz Azaiza mural in Manchester tribute to Palestinian journalists    Russia says it's in sync with US, China, Pakistan on Taliban    It's a bit frustrating to draw at home: Real Madrid keeper after Villarreal game    Shoukry reviews with Guterres Egypt's efforts to achieve SDGs, promote human rights    Sudan says countries must cooperate on vaccines    Johnson & Johnson: Second shot boosts antibodies and protection against COVID-19    Egypt to tax bloggers, YouTubers    Egypt's FM asserts importance of stability in Libya, holding elections as scheduled    We mustn't lose touch: Muller after Bayern win in Bundesliga    Egypt records 36 new deaths from Covid-19, highest since mid June    Egypt sells $3 bln US-dollar dominated eurobonds    Gamal Hanafy's ceramic exhibition at Gezira Arts Centre is a must go    Italian Institute Director Davide Scalmani presents activities of the Cairo Institute for ITALIANA.IT platform    







Thank you for reporting!
This image will be automatically disabled when it gets reported by several people.



Uber provides hackers with 'treasure map' to find computer flaws
Amwal Al Ghad Published in Amwal Al Ghad on 23 - 03 - 2016

Uber, the high-flying transportation firm, is releasing a technical map of its computer and communications systems and inviting hackers to find weaknesses in exchange for cash bounties.
While so-called "bug bounties" are not new, Uber's move shows how mainstream companies are increasingly relying on independent computer researchers to help them bolster their systems. It also indicates growing acceptance of the idea that making computer code public can make systems more secure, a philosophy that has long been advocated by the open-source software movement.
Uber's "Treasure Map" details the ride-hailing company's software infrastructure, identifies what sorts of data might be exposed inadvertently and suggests what types of flaws are the most likely to be found.
"We're wrapping up a lot of information and posting that to level the playing field so that it could be as easy for outside researchers to find flaws as us," said Collin Greene, manager of security engineering at Uber.
Companies rarely say much about their proprietary programming, except to enable third parties to make compatible software.
"That's a level of confidence that you have not seen too many closed-source software companies take in the past, and I'm really hopeful that others will follow suit," said Alex Rice, chief technology officer at HackerOne, which is managing Uber's bounty program.
HackerOne, a San Francisco rival called Bugcrowd and other startups have helped accelerate efforts to tap the independent security community to identify serious programming mistakes before criminals or spies do. They can serve as intermediaries between researchers and companies, and sometimes vet their findings.
A decade ago, hackers pointing out problems feared arrest but they can now earn modest sums from platforms like HackerOne. Firms such as Uber, looking to bolster their defenses, don't pay as much as criminals and military contractors who are looking for tools to carry out offensive attacks, but they offer options to those who would prefer to act as "white hats."
Bugcrowd Chief Executive Officer Casey Ellis said he has seen a surge in corporate clients asking for private bounty programs that are open to selected researchers.
"That increases the amount of trust you are giving to the researchers," Ellis said. "We run trusted programs where people get prerelease versions of Internet of Things devices or access to source code."
Source: Reuters

Clic here to read the story from its source.