Behind the DEF CON Anonymous Bug Submission Program


Manage episode 242401691 series 64813
By Mike Mimoso, Chris Brook, Mike Mimoso, and Chris Brook. Discovered by Player FM and our community — copyright is owned by the publisher, not Player FM, and audio is streamed directly from their servers. Hit the Subscribe button to track updates in Player FM, or paste the feed URL into other podcast apps.

A global anonymous bug submission platform, announced at DEF CON in Las Vegas in August, aims to help encourage ethical hackers to submit high-level bugs anonymously that might otherwise trigger a barrage of questions or might put researchers in legal hot water.

At DEF CON, conference founder Jeff Moss said the goal was to launch the yet-to-be-named program within the next 12 months. The program will be built on open-source technology from the Freedom of the Press Foundation's SecureDrop server and is designed to be a cyber tipline of sorts.

Marc Rogers, VP of cybersecurity strategy for Okta and Head of Security Operations for DEF CON, breaks down the anonymous bug submission program in this week's Threatpost Podcast.

301 episodes