Uber will be making changes to its bug bounty program as it addresses the concerns surrounding its response to its 2016 data breach, Reuters reports. Uber Chief Information Security Officer John Flynn went over the alterations the ride-hailing company will be making. “We’re clarifying the difference between researchers that act in good faith and people who don’t,” Flynn said. “We’re doing a better job about being explicit about what those things are, because it’s important these programs have high integrity.” Uber will also not pursue or recommend legal action against any hacker submitting flaws through its bug bounty portal. Editor's Note: Jennifer Baker examines what bug bounty programs may look like under the EU General Data Protection Regulation in this piece for The Privacy Advisor.
If you want to comment on this post, you need to login.