Kaspersky Lab Launches Bug Bounty Program With HackerOne
Up to $50,000 in bounty rewards will be available during the initial phase of the program
Kaspersky Lab announced at the Black Hat USA Conferencethelaunch of the Kaspersky Lab Bug Bounty Programwith HackerOne, an industry leading bug bounty platform provider.With this program, Kaspersky Lab will not only further bolster its mitigation strategy for addressing inherent software vulnerabilities, but also continue enhancing its relationship with external security researchers.
Today’s cyber threat landscape is becoming increasingly complex, requiring security companies to continuously identify andimplement effective tools in order to provide the most robust level of protection. Bug bounty programs are an effective and proven security measure that incentivizesexternal researchers to safely find and disclose software vulnerabilities to companies. As a result, these organizations are able to fix the reported issues without placing customers at risk.
The first phase of the Kaspersky Lab bug bounty program will officially began on August 2, 2016 and will last for a six-month period. During this initial phase, Kaspersky Lab will offer a total of $50,000 in bounty rewards to security researchers. Bug bounty participants will examine our flagship products for consumers and enterprises, Kaspersky Internet Security and Kaspersky Endpoint Security.After the preliminary phase is complete, the company will evaluate the results to determine what additional products and rewards should be included in the second phase of its bounty program.
“Our bug bounty program will help amplify the current internal and external mitigation measureswe use to continuously improve the resiliency of our products,” said Nikita Shvetsov, chief technology officer, Kaspersky Lab. “We think it’s time for all security companies, large and small, to work more closely with external security researchers by embracing bug bounty programs as an effective and necessary tool to help keep their products secure and their customers protected.”
“Vulnerabilities are inevitable and bug bounty programs are proven to supplement traditional security best practices with the help of the incredibly diverse global hacker community,” said Alex Rice, CTO and co-founder, HackerOne.“We look forward to partnering with Kaspersky Lab to help them run the most competitive bug bounty program and continue to protect customers.”
For more information on the Kaspersky Lab Bug Bounty Program, including the scope, eligibility, rewards, exceptions and rules, please visit:https://hackerone.com/kaspersky