Masress : Uber provides hackers with 'treasure map' to find computer flaws

Egypt's stocks rally to new peaks, EGX30 up 16.2% YTD Egypt, UK boost trade dialogue as Starmer readies Cairo visit EU eases rules on Egyptian potato imports – agriculture ministry Egypt calls for greater private sector role, debt swaps at G20 meeting Al-Sisi, Macron discuss Gaza ceasefire efforts, France's planned recognition of Palestinian state Over 60 million visits recorded under Egypt's Women's Health Initiative since 2019 State steps up efforts to streamline trade, digitise processes: Investment minister Public enterprises minister reviews steps to restart carbon anode factory in Ain Sokhna after two-year hiatus Culture minister launches national plan to revive film industry, modernise cinematic assets Thailand, Cambodia clash on new front as tens of thousands flee Macron's plan to recognize Palestinian state, divides Western allies Sudan's ambassador to Egypt holds reconstruction talks on with Arab League Egypt hosts international neurosurgery conference to drive medical innovation Egypt's EDA discusses Johnson & Johnson's plans to expand investment in local pharmaceutical sector I won't trade my identity to please market: Douzi Egypt welcomes 25-nation statement urging end to Gaza war Egypt, Senegal sign pharma MoU to unify regulatory standards Two militants killed in foiled plot to revive 'Hasm' operations: Interior ministry Egypt foils terrorist plot, kills two militants linked to Hasm group Egypt, Somalia discuss closer environmental cooperation Giza Pyramids' interior lighting updated with new LED system Egypt's EHA, Huawei discuss enhanced digital health Foreign, housing ministers discuss Egypt's role in African development push Egypt, Uruguay eager to expand trade across key sectors Egypt reveals heritage e-training portal Three ancient rock-cut tombs discovered in Aswan Sisi launches new support initiative for families of war, terrorism victims Egypt expands e-ticketing to 110 heritage sites, adds self-service kiosks at Saqqara Egypt's Irrigation Minister urges scientific cooperation to tackle water scarcity Palm Hills Squash Open debuts with 48 international stars, $250,000 prize pool Egypt's Democratic Generation Party Evaluates 84 Candidates Ahead of Parliamentary Vote On Sport to broadcast Pan Arab Golf Championship for Juniors and Ladies in Egypt Golf Festival in Cairo to mark Arab Golf Federation's 50th anniversary Germany among EU's priciest labour markets – official data Paris Olympic gold '24 medals hit record value A minute of silence for Egyptian sports Russia says it's in sync with US, China, Pakistan on Taliban It's a bit frustrating to draw at home: Real Madrid keeper after Villarreal game Shoukry reviews with Guterres Egypt's efforts to achieve SDGs, promote human rights Sudan says countries must cooperate on vaccines Johnson & Johnson: Second shot boosts antibodies and protection against COVID-19 Egypt to tax bloggers, YouTubers Egypt's FM asserts importance of stability in Libya, holding elections as scheduled We mustn't lose touch: Muller after Bayern win in Bundesliga Egypt records 36 new deaths from Covid-19, highest since mid June Egypt sells $3 bln US-dollar dominated eurobonds Gamal Hanafy's ceramic exhibition at Gezira Arts Centre is a must go Italian Institute Director Davide Scalmani presents activities of the Cairo Institute for ITALIANA.IT platform

Thank you for reporting!

This image will be automatically disabled when it gets reported by several people.

Uber provides hackers with 'treasure map' to find computer flaws

Amwal Al Ghad Published in Amwal Al Ghad on 23 - 03 - 2016

Uber, the high-flying transportation firm, is releasing a technical map of its computer and communications systems and inviting hackers to find weaknesses in exchange for cash bounties.
While so-called "bug bounties" are not new, Uber's move shows how mainstream companies are increasingly relying on independent computer researchers to help them bolster their systems. It also indicates growing acceptance of the idea that making computer code public can make systems more secure, a philosophy that has long been advocated by the open-source software movement.
Uber's "Treasure Map" details the ride-hailing company's software infrastructure, identifies what sorts of data might be exposed inadvertently and suggests what types of flaws are the most likely to be found.
"We're wrapping up a lot of information and posting that to level the playing field so that it could be as easy for outside researchers to find flaws as us," said Collin Greene, manager of security engineering at Uber.
Companies rarely say much about their proprietary programming, except to enable third parties to make compatible software.
"That's a level of confidence that you have not seen too many closed-source software companies take in the past, and I'm really hopeful that others will follow suit," said Alex Rice, chief technology officer at HackerOne, which is managing Uber's bounty program.
HackerOne, a San Francisco rival called Bugcrowd and other startups have helped accelerate efforts to tap the independent security community to identify serious programming mistakes before criminals or spies do. They can serve as intermediaries between researchers and companies, and sometimes vet their findings.
A decade ago, hackers pointing out problems feared arrest but they can now earn modest sums from platforms like HackerOne. Firms such as Uber, looking to bolster their defenses, don't pay as much as criminals and military contractors who are looking for tools to carry out offensive attacks, but they offer options to those who would prefer to act as "white hats."
Bugcrowd Chief Executive Officer Casey Ellis said he has seen a surge in corporate clients asking for private bounty programs that are open to selected researchers.
"That increases the amount of trust you are giving to the researchers," Ellis said. "We run trusted programs where people get prerelease versions of Internet of Things devices or access to source code."
Source: Reuters

Clic here to read the story from its source.