Podcast: Katie Moussouris on bug bounties and stunt hacking
As the drumbeat of security breaches continues, what's the best way to incentivize hackers to report vulnerabilities they find to help companies solve their cybersecurity problems?听Why are the changes the US government is proposing to an international arms control agreement incensing the major cybersecurity companies, researchers, and digital rights groups?
And is stunt hacking 鈥 such as when Chris Valasek and Charlie Miller recently听听while it was driving down a highway with a Wired reporter inside it 鈥 ethical? 听Katie Moussouris, chief policy officer for HackerOne, answers these questions and more .
"It's definitely something that got attention," Ms. Moussouris said of the published video of the Jeep hack.
"The patch had been available from the manufacturer, but nobody really knew about it. What I think the interesting question is: How do we get companies and consumers to pay attention to security issues without doing excessive stunt hacking and things generated to get a lot of attention? How do we make it a mundane practice for people to protect themselves, especially when there's a patch available?"听
Siobhan Gorman from global communications consultancy company Brunswick Group, joins the panel discussion about how cyberattacks could hurt businesses' reputations and outlines the "golden rules" for companies when disclosing how they've been breached.听The former Wall Street Journal intelligence correspondent also discusses how government agencies might improve their digital security in the wake of the Office of Personnel Management hack that exposed millions of people's sensitive personal records.
The podcast is cohosted by听, strategist at the New America think tank and author of "Cybersecurity and Cyberwar: What Everyone Needs to Know," 补苍诲听, deputy editor of 海角大神's Passcode.
The podcast is听. You can find more information about the podcast on Passcode's long-form storytelling platform.听听for new episodes or sign up for Passcode below.
In previous episodes, Cory Doctorow 鈥 science fiction author, journalist and co-editor of the blog Boing Boing 鈥 joined Singer and Sorcher to talk about society's "peak indifference" to the Surveillance State and what a future world war might look like in the 2020s. Dan Kaufman, then-director of DARPA's Information Innovation Office, discussed funding "moonshot" projects to help the military beef up its digital defenses.
The Cybersecurity Podcast team also interviewed Bruce Schneier, prolific author and chief technology officer at Resilient Systems, about the challenges of publicly blaming countries for cyberattacks and Nate Fick, the CEO of security intelligence software company Endgame about leveraging cybersecurity solutions for the government into the private sector.听
They have also interviewed Alex Stamos, formerly Yahoo's chief information security officer about what it鈥檚 like to lead a team of 鈥淧aranoids鈥 and why people who have his job are so stressed out. Stamos is now Facebook's chief security officer.
And the Army's top cyber commander, Lt. Gen. Edward Cardon,听joined their first episode to talk about how the Army is growing up its ranks of cybersecurity experts听and what role the military should play when a nation-state attacks a private company.听
For more episodes, visit 补苍诲听听辞谤 sign up for Passcode听产别濒辞飞.听
听
