Swisscom: Invitation to hack
Swisscom is now blowing the whistle on a hardcore test: IT security experts worldwide are invited to attack a copy of the Swisscom Customer Center.
In contrast to conventional security tests, which are carried out by individual experts from a company, the Swisscom on the "crowd security" approach. Hackers from all over the world who have registered on the platform of cooperation partner HackerOne are allowed to attack a copy of the Swisscom customer center for six weeks, as the company emphasizes. Any security vulnerabilities found would be reported via HackerOne The vulnerability was immediately reported to a specialized Swisscom team, which initiated the remediation of the vulnerability. The finder of the security gap will receive financial compensation. The amount depends on the severity and difficulty of the vulnerability and can amount to several thousand francs, the telecom company writes.
"It is important to bundle hackers' skills in a positive way and to create legal incentives," says Stephan Rickauer, project manager of the program at Swisscom. This innovative approach to quality enhancement is another building block in Swisscom's security strategy, he adds.
HackerOne is a San Francisco-based company that specializes in detecting IT security leaks. According to information, IT security experts from all over the world work for the company on the basis of a bug bounty (premium for gaps found).
