The General Services Administration is inviting ethical hackers to break into the sign-on portal for citizens applying for government jobs and accessing federal programs.
The agency added Login.gov to its sweeping public bug bounty program, offering anyone who discovers a security gap within the site potentially thousands of dollars in prize money. The site offers citizens a way to access a variety of federal programs using a single username and password, and today some 7 million people go through the site to apply for federal jobs, expedite the airport security process and do business with the government.
The GSA’s Technology Transformation Service kicked off the bug bounty with cybersecurity research platform HackerOne in August, which the office said marks the first such program at a civilian agency. The initiative originally centered on Federalist, a platform agencies could use to build custom websites, but over the last year expanded to include Data.gov, Cloud.gov and now Login.gov.
Keep reading this article at: https://www.nextgov.com/cybersecurity/2018/07/gsa-adds-logingov-sweeping-bug-bounty-program/149678/