Author Topic: 1Password Taunts White Hats with $100,000 "Capture the Flag" Bug Bounty  (Read 28 times)

0 Members and 1 Guest are viewing this topic.

Offline Quizmaster

  • Flying Nurse
  • Seasonal Competition Team
  • *
  • Posts: 23301
    • Smokey's Security Forums
  • .: Surf Queen
1Password Taunts White Hats with $100,000 "Capture the Flag" Bug Bounty
« Reply #1 on: March 10, 2017, 04:09:02 AM »
1Password Taunts White Hats with $100,000 "Capture the Flag" Bug Bounty
10 March 2017, 1:05 am

If you can break into a 1Password vault and obtain a plain text file full of "bad poetry," AgileBits, the developer behind the service, will pay you a bug bounty of $100,000.

In the past, this type of "capture the flag" bug bounty had a price tag that was a mere $25,000. Sure, even that sum is quite high when it comes to bug bounties but seems like pocket change when compared with the new value. 

AgileBits seems to want through all means necessary to demonstrate its service is safe, taunting security researchers to find vulnerabilities if they can. 

Huge payout to prove a point

The bug bounty can be found on BugCroud, which is a platform for crowdsourcing bug hunts. Companies can easily reward researchers for their discoveries. This one is the biggest bounty that's currently on the platform as AgileBits tries to prove a point - it takes security seriously. 

Of course,... (read more)

Source: Softpedia News / Security

>> To obtain the full Softpedia Security News article, click the link in the first post line <<

 


Except where otherwise stated, all content, graphics, banners and images included © 2006 - 2018 Smokey Services™ -- All rights reserved
Design board graphics, banners and images by DSTM & PseFrank

This site does not store profiling-, tracking-, third-party and/or any other non-essential cookie(s) on client computers and is fully compliant with the EU ePrivacy Directive
Smokey's does not use any Web Analytics/Analysis Service, and also does not use any browser fingerprinting techniques



Smokey's also provides free fully qualified Log / Malware Analysis & Removal Help and System Health Checks