Yes, you really can get paid to hack the Pentagon

ByCraig Haley

The future of warfare won’t be compromised of soldiers, missiles or tanks. Rather it will be fought online. Through the Internet. Cyber warfare.

This has been very popular rhetoric in the computer industry for some time now as people look to what the future of International conflict will look like. And it seems like the Department of Defense is making some pretty bold moves in that direction by introducing its very own bug bounty program to test its own cyber defenses.

Bug bounty programs are when a company invites third party “hackers” (or rather any tech savvy person capable of compromising computer networks one way or another) to hack their services in a bid to uncover vulnerabilities so they can be fixed. The practise is commonly known as white hat hacking. The “white hat” referring to the fact that the people doing the hacking are actually the good guys ultimately looking to strengthen a network, not destroy or compromise it.

Facebook, Google and Apple all have such programs in place and are willing to pay good money for those that can find serious flaws in their services.


Sponsored Content. Continued below...




The Department of Defense is now getting in on the act, inviting hackers to compromise networks at the Pentagon. But before you start doing anything, know that you need to be properly vetted and are required to pass a number of requirements before being allowed to participate. This is national security after all.

Secretary of Defense Ash Carter said on his social media page –

I am confident this innovative initiative will strengthen our digital defenses and ultimately enhance our national security. I encourage all who meet the requirements, to participate in this historic opportunity to see if you can “hack the pentagon.”

He also noted –

Participants in the bug bounty will be required to register and submit to a background check prior to any involvement with the pilot program. Once vetted, these hackers will participate in a controlled, limited duration program that will allow them to identify vulnerabilities on a predetermined asset. This bug bounty will not compromise any of the department’s critical, mission-facing systems. Instead, it will challenge our digital security in new and innovative ways.

Think you got what it takes? You need to be a US citizen to apply and the program will take place at a date yet to be announced. Reward money – which there presumably will be to those that do uncover weaknesses – has also yet to be revealed.