HP is willing to pay people to break its software apart. The company on Tuesday (July 31) announced its first bug bounty program that specifically targets its printers, offering as much as $10,000 to hackers who can find vulnerabilities on its machines.
Bug bounties are a common way for companies to find security flaws. HP quietly started its program in May with 34 researchers signing up. The company has already paid $10,000 to a hacker who found a serious flaw with its printers, said Shivaun Albright, the company's chief technologist for printer security.
The company is focused on printer security because of how vulnerable Internet of Things devices are, she said.
HP's bug bounty program will be run through BugCrowd, a platform that facilitates payouts and invitations. The program is currently private, with BugCrowd handling which researchers are invited to join. Albright said HP is interested in making it public in the future, but is keeping it closed for now to better manage incoming vulnerabilities.
View Full Article
No entries found