The US Department of Defense has announced that its initial Hack the Pentagon bug bounty program was so successful that it will continue the effort for three years. The initial program lasted several weeks and resulted in 1,400 security researchers identifying 138 serious vulnerabilities, which have since been fixed.
“If the first Hack the Pentagon was a pilot project, this is now the real thing,” said, Marten Mickos, CEO of HackerOne, which managed the initial effort. For the expanded program, the DoD has also brought Synack on board to assist with the project.
DoD experts are now available to serve as advisors to other agencies that want to launch similar programs.