Bug Bounty

The Air Force’s acquisition chief says the next frontier for bug bounties lies in the chips and embedded systems the Defense procurement process typically ignores.

CISA and OMB will require civilian agencies to develop vulnerability disclosure policies, allowing outside experts who have “seen something” that looks like a cyber weakness to “say something” to those who can fix it.

In today’s Federal Newscast, the Justice Department is looking to make it easier for agencies to submit their annual Freedom of Information Act reports required by law.

The Air Force called on white-hat hackers to protect one of its clouds.

When it comes to moving from on-site data centers to the cloud, agencies face substantial workforce and culture challenges that aren’t always reflected in metrics.

Manny Castillo, a senior IT security adviser at the FBI, said the bureau does all its penetration testing internally and has no plans on changing that.

Neil Chatterjee will take over as chair of the Federal Energy Regulatory Commission, after Kevin McIntyre announced he was stepping down due to a “health setback.”

The new Veterans Affairs Secretary Robert Wilkie said several new people will be taking top-level leadership positions at the agency shortly. Pamela Powers will be the department’s new chief of staff and Chris Syrek will be VA’s deputy chief of staff.

The Defense Department’s vulnerability disclosure policy lets anyone in the world report security holes they find in the DoD system without fear of prosecution.

White hat hackers discovered 207 verified vulnerabilities in Air Force systems, including some very serious ones.