Explore the world of vulnerability disclosure programs and bug bounties in this 59-minute webinar featuring experts from Wiley Rein Privacy & Cybersecurity Practice and HackerOne. Gain insights into the benefits and legal considerations of these cybersecurity initiatives for both private sector companies and federal government agencies. Learn from real-world examples, including Project Zero, DoD Vulnerability Disclosure, and Starbucks' program. Understand the legal framework, consent issues, scope definition, and notification obligations. Discover how these programs can enhance security while navigating potential challenges. Benefit from practical advice to implement in your organization, and stay informed about government interest and FTC statements on the topic. Participate in a Q&A session starting at minute 44 to address specific concerns and deepen your understanding of vulnerability disclosure policies.
An Invitation to Hack - Benefits and Risks of Vulnerability Disclosure Programs
Overview
Syllabus
Introduction
Background Legal Framework
The Benefits
Real World Examples
Project Zero
DoD Vulnerability Disclosure
Starbucks Vulnerability Disclosure
Starbucks
Legal Framework
Considerations
Consent
Scope
Notification obligations
Takeaways
BDP Platform
Questions
Government Interest
FTC Statement
Taught by
HackerOne
Related Courses
-
Vulnerability Disclosure Policies - Hack Responsibly
-
Vulnerability Disclosure Programs: CISA's Success and Future Plans - Bugcrowd Webinar
-
Bug Bounty Programs - Successfully Controlling Complexity and Perpetual Temptation
-
Best Practices for Structuring Effective Bug Bounty Programs
-
Behind the Curtain - Safe Harbor and Department of Defense
-
Combining the Power of Builders and Breakers in Cybersecurity - USENIX Enigma 2018
