ash carter speaking

You’re Invited: Hack the Pentagon

What’s the best way to discover weaknesses in your computer network? Pay experts to hack it.

 

The Pentagon is inviting outside hackers to test the security of U.S. Defense Department websites in a pilot program they’re calling “Hack the Pentagon” set to begin in April.

Led by the Pentagon’s Defense Digital Service, the project is modeled after similar competitions known as “bug bounties,” conducted by large corporations like Facebook, United Airlines and Microsoft, but this is a first for the federal government.

The Pentagon will use crowdsourcing to find qualified, vetted hackers who will identify vulnerabilities to help the Department of Homeland Security shore up its security and improve delivery of networks, products, and digital services, according to a statement released by The Pentagon Wednesday.

"I am always challenging our people to think outside the five-sided box that is the Pentagon," Defense Secretary Ashton B. Carter said in the statement. "Inviting responsible hackers to test our cybersecurity certainly meets that test. I am confident this innovative initiative will strengthen our digital defenses and ultimately enhance our national security."

Reuters reports that DJ Patil, the White House's chief data scientist and former LinkedIn executive, said other federal agencies were watching the Pentagon project and could follow suit, which would further enhance collaboration and result in greater economies of scale.

The Pentagon has been on high alert after it was the victim of recent high profile attacks. Last year, hackers thought to be based out of Russia broke into the unclassified email systems of the Joint Chiefs of Staff.

Currently, the department relies on dedicated hackers called at the National Security Agency (NSA) called “red teams” to probe its defenses, but opening up the process to outside researchers and experts should bring a broader set of perspectives.

Rock Stevens, an Army captain currently on leave at the University of Maryland, said the department's systems are so large that insiders alone can't find all the problems.

"There's no way you're going to have dedicated teams doing this even 24/7 that are going to find every vulnerability," he told The Baltimore Sun.

While the exact details are yet to be finalized, the Pentagon said there may be a cash reward, or promise of public recognition.


 By Brionne Griffin, FEDagent

 

Posted in General News

Tags: DHS, Department of Homeland Security, cybersecurity, hackers, hacking, ash carter, Brionne Griffin

Print

This Week on FEDtalk

Preparing for 2020 with Public Employee Groups

Tune in to FEDtalk this week to hear from public employee groups about their plans for 2020. Guests from across the federal community will discuss the biggest issues of 2019 spilling into the new year, policy priorities for their organization, and important events every federal employee should look out for this year.

Read more ...

Hear it from FLEOA

FLEOA Successfully Advocates for Change to Michigan LEOSA Policy

On Tuesday, FLEOA President Larry Cosme issued a letter on Michigan LEOSA policy.  The full text of the statement is below.

Read more ...
FEDagent

FEDagent.com

The free weekly e-report for Federal Law Enforcement

Get in touch with us

Email FEDagent publisher

Copyright 2020 FEDagent.com
Hosted by Peak Media Company, LLC