White Hats Take Aim in 'Hack the Air Force' Bug Bounty Program

[TechWeb](?elq_mid=79743&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170811&cid=NL_DR_EDT_DR_daily_20170811&elqTrackId=1a604ffad9cf48aea112105b8a73e1ea&elq=0ca452f0a5ee436685a9d20e919fa956&elqaid=79743&elqat=1&elqCampaignId=27593) Follow Dark Reading: [RSS]( August 11, 2017 Top!Top?elq_mid=79743&elq_cid=22844169 LATEST SECURITY NEWS & COMMENTARY [White Hats Take Aim in 'Hack the Air Force' Bug Bounty Program]( The inaugural Air Force bug bounty program involved 272 vetted hackers, who submitted 207 valid flaws in 24 days. [Air Gap FAILs, Configuration Mistakes Causing ICS/SCADA Cyberattacks]( A utility's cautionary tale, and how a popular ICS/SCADA network protocol failed a fuzzing test miserably. [Taking Down the Internet Has Never Been Easier]( Is there a reason why the Internet is so vulnerable? Actually, there are many, and taking steps to remain protected is crucial. [SonicSpy Authors Spin Out Over 1,000 Spyware Apps]( The actors behind this new malware family created a sizable selection of malicious apps in just over seven months, some of which appeared on Google Play. [60% of Infosec Execs Are Boosting SOC Deployments]( A survey of security executives and managers finds a majority are expanding or upgrading their current SOC readiness. [MORE NEWS & COMMENTARY]( HOT TOPICS [NIST Releases Cybersecurity Definitions for the Workforce]( In an effort to bring consistency when describing the tasks, duties, roles, and titles of cybersecurity professionals, the National Institute of Standards and Technology released the finalized draft version of its framework. [Steganography Use on the Rise Among Cyber Espionage, Cybercrime Groups]( At least three cyber espionage campaigns and several malware samples in recent months have employed ancient technique, Kaspersky Lab says. [What Women in Cybersecurity Really Think About Their Careers]( New survey conducted by a female security pro of other female security pros dispels a few myths. [MORE]( EDITORS' CHOICE [2017 Pwnie Awards: Who Won, Lost, and Pwned]( Security pros corralled the best and worst of cybersecurity into an award show highlighting exploits, bugs, achievements, and attacks from the past year. Tech Resources - [The DomainTools Report: Spring 2017 Edition]( - [GDPR: What It Means & How SAS Data Mgmt Can Help]( - [Network Intelligence at Tomorrow's Scale](s-scale/390263?elq_mid=79743&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170811&cid=NL_DR_EDT_DR_daily_20170811&elqTrackId=4390af9f2d9744458ea9a7ca9faddd4e&elq=0ca452f0a5ee436685a9d20e919fa956&elqaid=79743&elqat=1&elqCampaignId=27593) - [Survey Report: Cyber Threat Intelligence Uses, Successes and Failures](-successes-and-failures/391013?elq_mid=79743&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170811&cid=NL_DR_EDT_DR_daily_20170811&elqTrackId=6cbe157dd61b4b2cbc2b342e50b66afa&elq=0ca452f0a5ee436685a9d20e919fa956&elqaid=79743&elqat=1&elqCampaignId=27593) - [How UEBA/UAM Supports Monitoring High Risk Positions]( - [WHODUNIT: The Mystery Of The Apt]( - [Legacy Decommissioning: Good for the Budget, Good for Compliance](-good-for-compliance-/391103?elq_mid=79743&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170811&cid=NL_DR_EDT_DR_daily_20170811&elqTrackId=c645f12aa3a1438fb081dd7ed925d665&elq=0ca452f0a5ee436685a9d20e919fa956&elqaid=79743&elqat=1&elqCampaignId=27593) [ACCESS TECH LIBRARY NOW]( - [[Cyber Attackers] How They Research Your Organization & What To Do About It]( In this eye-opening webinar, you'll learn how attackers can take advantage of your website, employees' social media, and other vehicles to learn about your organization - and get the ammunition they need to convince your end users to trust them. - [[A2 Academy] AI: Impacts Today & in the Future]( In response to the AI revolution All Analytics is launching the 2017 A2 Academy, AI: How It Impacts Your Organization, Today and in the Future, a five-part educational series airing in June. Each session will feature expert presentations delivered as streaming ... [MORE WEBINARS]( Partner Perspectives [6 Ways CISOs Can Play a Role in Selling Security]( When customers ask tough questions about data security, business service resilience, privacy, regulatory, and reputational risk it's best to remain upbeat and positive. Here's how. [Fight 'Credential Stuffing' with a New Approach to Authorization]( Token-based authorization that lets users prove their identity through Facebook, Google, or Microsoft credentials can dramatically reduce your attack surface and give enterprises a single point of control. [Can Your Risk Assessment Stand Up Under Scrutiny?]( Weak risk assessments have gotten a pass up until now, but that may be changing. Middle!Middle?elq_mid=79743&elq_cid=22844169 FEATURED REPORTS - [[Security Breach Report] Overall Impact of & Steps to Prevent Breaches]( Despite the escalation of cybersecurity staffing and technology, enterprises continue to suffer data breaches and compromises at an alarming rate. How do these breaches occur? How are enterprises responding, and what is the impact of these compromises on the business? ... - [How to Invest in Cybersecurity & Prioritize Resources](strategic-security-report]-how-enterprises-are-attacking-the-cybersecurity-challenge/390403?elq_mid=79743&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170811&cid=NL_DR_EDT_DR_daily_20170811&elqTrackId=beb19b9b4c9b43c5a76264e5019e1eaa&elq=0ca452f0a5ee436685a9d20e919fa956&elqaid=79743&elqat=1&elqCampaignId=27593) In 2016, enterprises encountered a range of new exploits and threats -- including ransomware and state-sponsored attacks -- and developed new plans of defense. How will these organizations be investing their cybersecurity budgets and staffing in the next 12 months? What tools ... [MORE REPORTS]( CURRENT ISSUE [Security Vulnerabilities: The Next Wave]( [DOWNLOAD THIS ISSUE]( [SUBSCRIBE NOW]( [BACK ISSUES]( | [MUST READS]( | [TECH DIGEST]( PRODUCTS & RELEASES [Hackers: Privileged Accounts Provide Fastest Access to Sensitive, Critical Data]( [Security Summit Alert: Tax Pros Warned of New Scam to Steal Their Passwords]( [Darktrace Releases Version 3 of its AI Cyber Defense Solution]( [Perimeterx Raises $23 million to Expand AI Behavioral Threat Platform](23-million-to-expand-ai-behavioral-threat-platform-/d/d-id/1329567?elq_mid=79743&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170811&cid=NL_DR_EDT_DR_daily_20170811&elqTrackId=24b323dbeb5046bc9de1ea6e514ad413&elq=0ca452f0a5ee436685a9d20e919fa956&elqaid=79743&elqat=1&elqCampaignId=27593) [MORE PRODUCTS & RELEASES]( Dark Reading Daily -- Published By [InformationWeek](?elq_mid=79743&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170811&cid=NL_DR_EDT_DR_daily_20170811&elqTrackId=400f47a0339249e3b179eff1fcbcb847&elq=0ca452f0a5ee436685a9d20e919fa956&elqaid=79743&elqat=1&elqCampaignId=27593) UBM Tech 2 Penn Plaza, 15th Floor, New York, NY 10121 To update your profile, change your e-mail address, or unsubscribe, [cick here.]( To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:email@techwebnewsletters.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2017]( | [UBM Tech]( | [Privacy Statement]( | [Terms Of Service]( | [Contact Us](mailto:iwkbtnnewsletters@ubm.com)