Donation campaign launched, aimed at OpenSSL audit

Share this article:

A new funding drive has been created to entice security researchers to help discover flaws in OpenSSL.

Australian security start-up Bugcrowd, which offers a crowdsourced bug bounty marketplace, has launched the program, according to a blog post by the company.

Following the discovery of the Heartbleed bug and its impact on the internet as a whole, as well as statements made by Steve Marquess, president of the OpenSSL Software Foundation, regarding the need for funding to conduct a formal security audit on the open source software, Bugcrowd took action.

The company will organize “sprint bounties” – similar to normal bounty programs but involving a capped budget and set disclosure periods – which will reward members of the security community for discovering flaws with money donated to the campaign. Bugcrowd intends to cover all of its own costs associated with this effort.

Share this article:

Sign up to our newsletters

More in News

Five schools earn NSA's excellence in cyber ops distinction

The schools earned NSA's Centers for Academic Excellence designation for their cyber offerings.

With RATs at their disposal, 419 scammers target businesses

With RATs at their disposal, 419 scammers target ...

A new report reveals how Nigeria's 419 scammers are spreading malware to pocket business funds.

InfoSec pros worried BYOD ushers in security exploits, survey says

InfoSec pros worried BYOD ushers in security exploits, ...

A study by the Information Security Community on LinkedIn found most organizations don't have proper polices and support for BYOD.