Govt weighing bug bounty to find holes in systems


A bug bounty program for security researchers and other crowdsourcing “incentives” aimed at identifying potential vulnerabilities in federal government systems are being considered to boost the cyber posture of agencies.

As the next phase of development for Australia’s refresh cybersecurity strategy begins, the Department of Home Affairs has flagged changes to the government’s nascent vulnerability disclosure programs (VDPs).

It comes less than a year after VDPs – which allow security researchers and other members of the public to easily report potential bugs to software owners – were mandated for agencies subject to the Protective Security Policy Framework (PSPF).

Do you know more? Contact James Riley via Email.

Leave a Comment