Sign In

Communications of the ACM

ACM Careers

HP Will Pay Hackers ­p to $10,000 to Break Their Printers

View as: Print Mobile App Share:
HP printer

HP is the first company to invest in a dedicated bug bounty program for printing devices.

Credit: CNET

HP is willing to pay people to break its software apart. The company on Tuesday (July 31) announced its first bug bounty program that specifically targets its printers, offering as much as $10,000 to hackers who can find vulnerabilities on its machines.

Bug bounties are a common way for companies to find security flaws. HP quietly started its program in May with 34 researchers signing up. The company has already paid $10,000 to a hacker who found a serious flaw with its printers, said Shivaun Albright, the company's chief technologist for printer security.  

The company is focused on printer security because of how vulnerable Internet of Things devices are, she said.

HP's bug bounty program will be run through BugCrowd, a platform that facilitates payouts and invitations. The program is currently private, with BugCrowd handling which researchers are invited to join. Albright said HP is interested in making it public in the future, but is keeping it closed for now to better manage incoming vulnerabilities.

View Full Article


No entries found

Sign In for Full Access
» Forgot Password? » Create an ACM Web Account