United Airlines Pays out 1 Million Air Miles in Bounty Program
Posted by: Timothy Weaver on 07/20/2015 09:38 AM
[
Comments
]
Want a million air miles? Security researcher Jordan Wiens will be flying after submitting a security flaw to the United Airlines bug bounty program.
The program was launched in May and depending on the severity of the flaw, researchers can receive 50,000 to 1,000,000 miles.
According to ZDNet, Wiens discovered a remote code execution (RCE) flaw in May. The flaw, if left unchecked, could allow an attacker to have unauthenticated access to entry systems to inject malware and other disruptive applications.
The flaw was verified by the airlines and Wiens received his bounty two months later.
United Airlines bug bounty program offers rewards for security flaws which impact the “confidentiality, integrity and/or availability of customer or company information” of client-facing websites and third-party sites used by the airline.
Source: SCMagazine
The program was launched in May and depending on the severity of the flaw, researchers can receive 50,000 to 1,000,000 miles. According to ZDNet, Wiens discovered a remote code execution (RCE) flaw in May. The flaw, if left unchecked, could allow an attacker to have unauthenticated access to entry systems to inject malware and other disruptive applications.
The flaw was verified by the airlines and Wiens received his bounty two months later.
United Airlines bug bounty program offers rewards for security flaws which impact the “confidentiality, integrity and/or availability of customer or company information” of client-facing websites and third-party sites used by the airline.
Source: SCMagazine
Comments
