Hackers and rules…
As well as money, Facebook promises not to land them in trouble with the police, if they have complied with the program’s golden rules.
“If you give us reasonable time to respond to your report before making any information public, and make a good faith effort to avoid privacy violations, destruction of data and interruption or degradation of our service during your research, we will not bring any lawsuit against you or ask law enforcement to investigate you.”
One British hacker has earned more than $2400 from Facebook, and the most prolific White Hat contributors are now given their own Facebook “bug bounty” credit cards.
Facebook’s chief security officer, Joe Sullivan, says he would much rather the hackers worked with the company, rather than against it. In time, he hopes the hackers will be able to find legitimate ways of expressing themselves within schools and universities.
“There is a real lack of practical academic programs for cyber-security not only in the US but also internationally,” he said. “Cyber-security is a skill best learned by doing, and unfortunately many of the current academic programs place little emphasis on real-world practical experience such as that gained in competition or via bug-bounty programs.
“This dearth of the right educational opportunities has a real impact on companies like ours who are searching far and wide for cyber-security experts to protect the networks and sites that people rely on and use every day.