Security News > 2021 > September > TikTok, GitHub, Facebook Join Open-Source Bug Bounty

TikTok, GitHub, Facebook Join Open-Source Bug Bounty
2021-09-22 14:52

As more businesses rely on open-source software for mission-critical infrastructure, HackerOne, along with sponsors including Elastic, Facebook, Figma, GitHub, Shopify and TikTok, announced they are throwing a new round of resources behind an Internet Bug Bounty Program to lure threat hunters' attention to open-source supply chains.

Following a spate of spectacular software supply-chain breaches, market leaders have decided to throw in some cash to fund the IBB to incentivize bug hunters to take a closer look at open-source code.

"The new IBB empowers organizations that are beneficiaries of open source to play an active role in collectively building more secure digital infrastructure for everyone."

"TikTok is proud to support innovative initiatives like the HackerOne IBB pilot program to further strengthen not only TikTok's security, but also to drive a safer internet for all by leveraging the efforts of the global security research community," Roland Cloutier, TikTok chief security officer said.

JOIN Threatpost and Linux security pros at Uptycs for a LIVE roundtable on the 4 Golden Rules of Linux Security.

Your top takeaway will be a Linux roadmap to getting the basics right! REGISTER NOW and join the LIVE event on Sept. 29 at Noon EST. Joining Threatpost is Uptycs' Ben Montour and Rishi Kant who will spell out Linux security best practices and take your most pressing questions in real time.


News URL

https://threatpost.com/tiktok-github-facebook-open-source-bug-bounty/174898/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Facebook 29 0 11 46 54 111
Github 12 2 45 29 19 95