Egypt, Qatar intensify coordination as Gaza crisis worsens    Egypt prepares governmental talks with Germany to boost economic cooperation    Arabia Developments, ElSewedy join forces to launch industrial zone in New 6th of October City    Egypt, US's Merit explore local production of medical supplies, export expansion    Egypt, WHO discuss joint plans to support crisis-affected health sectors    IWG accelerates Egypt expansion, plans 30 new flexible workspace centres in 2026    Grand Egyptian Museum fuels hospitality, real estate expansion in West Cairo    400 children with disabilities take part in 'Their Right to Joy' marathon    Egypt touts North Coast as investment magnet after $29.7b Qatar deal – FinMin    URGENT: Egypt's net FX reserves hit $50b in October – CBE    Egypt's Foreign Minister discusses Gaza, Sudan with Russian counterpart    Russia's Putin appoints new deputy defence minister in security shake-up    UNESCO General Conference elects Egypt's El-Enany, first Arab to lead body    Egypt repatriates 36 smuggled ancient artefacts from the US    Grand Egyptian Museum attracts 18k visitors on first public opening day    'Royalty on the Nile': Grand Ball of Monte-Carlo comes to Cairo    Egypt, Albania discuss expanding healthcare cooperation    VS-FILM Festival for Very Short Films Ignites El Sokhna    Egypt's cultural palaces authority launches nationwide arts and culture events    Egypt launches Red Sea Open to boost tourism, international profile    Qatar to activate Egypt investment package with Matrouh deal in days: Cabinet    Hungary, Egypt strengthen ties as Orbán anticipates Sisi's 2026 visit    Egypt's PM pledges support for Lebanon, condemns Israeli strikes in the south    Omar Hisham Talaat: Media partnership with 'On Sports' key to promoting Egyptian golf tourism    Egypt, Medipha sign MoU to expand pharmaceutical compounding, therapeutic nutrition    Egypt establishes high-level committee, insurance fund to address medical errors    Sisi expands national support fund to include diplomats who died on duty    Madinaty Golf Club to host 104th Egyptian Open    Egypt's PM reviews efforts to remove Nile River encroachments    Al-Sisi: Cairo to host Gaza reconstruction conference in November    Egypt will never relinquish historical Nile water rights, PM says    Al-Sisi, Burhan discuss efforts to end Sudan war, address Nile Dam dispute in Cairo talks    Syria releases preliminary results of first post-Assad parliament vote    Egypt resolves dispute between top African sports bodies ahead of 2027 African Games    Germany among EU's priciest labour markets – official data    Paris Olympic gold '24 medals hit record value    It's a bit frustrating to draw at home: Real Madrid keeper after Villarreal game    Russia says it's in sync with US, China, Pakistan on Taliban    Shoukry reviews with Guterres Egypt's efforts to achieve SDGs, promote human rights    Sudan says countries must cooperate on vaccines    Johnson & Johnson: Second shot boosts antibodies and protection against COVID-19    Egypt to tax bloggers, YouTubers    Egypt's FM asserts importance of stability in Libya, holding elections as scheduled    We mustn't lose touch: Muller after Bayern win in Bundesliga    Egypt records 36 new deaths from Covid-19, highest since mid June    Egypt sells $3 bln US-dollar dominated eurobonds    Gamal Hanafy's ceramic exhibition at Gezira Arts Centre is a must go    Italian Institute Director Davide Scalmani presents activities of the Cairo Institute for ITALIANA.IT platform    







Thank you for reporting!
This image will be automatically disabled when it gets reported by several people.



Uber provides hackers with 'treasure map' to find computer flaws
Amwal Al Ghad Published in Amwal Al Ghad on 23 - 03 - 2016

Uber, the high-flying transportation firm, is releasing a technical map of its computer and communications systems and inviting hackers to find weaknesses in exchange for cash bounties.
While so-called "bug bounties" are not new, Uber's move shows how mainstream companies are increasingly relying on independent computer researchers to help them bolster their systems. It also indicates growing acceptance of the idea that making computer code public can make systems more secure, a philosophy that has long been advocated by the open-source software movement.
Uber's "Treasure Map" details the ride-hailing company's software infrastructure, identifies what sorts of data might be exposed inadvertently and suggests what types of flaws are the most likely to be found.
"We're wrapping up a lot of information and posting that to level the playing field so that it could be as easy for outside researchers to find flaws as us," said Collin Greene, manager of security engineering at Uber.
Companies rarely say much about their proprietary programming, except to enable third parties to make compatible software.
"That's a level of confidence that you have not seen too many closed-source software companies take in the past, and I'm really hopeful that others will follow suit," said Alex Rice, chief technology officer at HackerOne, which is managing Uber's bounty program.
HackerOne, a San Francisco rival called Bugcrowd and other startups have helped accelerate efforts to tap the independent security community to identify serious programming mistakes before criminals or spies do. They can serve as intermediaries between researchers and companies, and sometimes vet their findings.
A decade ago, hackers pointing out problems feared arrest but they can now earn modest sums from platforms like HackerOne. Firms such as Uber, looking to bolster their defenses, don't pay as much as criminals and military contractors who are looking for tools to carry out offensive attacks, but they offer options to those who would prefer to act as "white hats."
Bugcrowd Chief Executive Officer Casey Ellis said he has seen a surge in corporate clients asking for private bounty programs that are open to selected researchers.
"That increases the amount of trust you are giving to the researchers," Ellis said. "We run trusted programs where people get prerelease versions of Internet of Things devices or access to source code."
Source: Reuters

Clic here to read the story from its source.