The newly proposed Federal Cybersecurity Vulnerability Reduction Act mandate vulnerability disclosure policies for contractors.
Google will reward the discoveries of flaws found in its open source software projects, such as Golang, Angular and Fuchsia.
Bug bounty programs can be invaluable, but without the proper resources in place, they will fail hard.
During Barack Obama's second term, some top administration officials began looking at bounties as a potential way to jump-start the effort to upgrade federal government's security programs. The idea was a radical one, so they decided to start slowly, by hacking the Pentagon.
Following the success of the bounty programs started by companies such as iDefense, Zero Day Initiative, and Mozilla, technology companies and platform providers began rolling out bounties of their own. Among the big players to enter the game were Google, Facebook, Yahoo, and eventually, Microsoft.