Community discussions

MikroTik App
 
User avatar
Davis
Member Candidate
Member Candidate
Topic Author
Posts: 107
Joined: Mon Aug 01, 2011 12:27 pm
Location: Latvia, Riga
Contact:

Suggestion for MikroTik - Bug Bounties

Thu May 03, 2018 1:09 am

After recent attacks and vulnerabilities (especially winbox exploit - that was 0-day in the wild) I would like to suggest MikroTik starting a bug bounty program.
Bug bounties are essentially rewards (usually financial) for finding security vulnerabilities and properly reporting them to the authors of the software (for getting fixed). They allow any hacker to search for new vulnerabilities, report them and get rewarded. This way many people improve security of the tested software (assuming the reported vulnerabilities get fixed in a timely manner).
A bug bounty program with clearly defined scope, fix times and tempting rewards shows that a company really cares about security (about discovering and fixing the issues).
There are bug bounty websites/communities like HackerOne that offer software vendors an easy way to announce bug bounties and get their products tested by many independent white-hat hackers/researchers.
P.S. I think security is one of the key factors in (non-ISP) enterprise markets.
Last edited by Davis on Thu May 03, 2018 1:58 am, edited 1 time in total.
 
User avatar
noyo
Member Candidate
Member Candidate
Posts: 114
Joined: Sat Jan 28, 2012 12:25 am
Location: Mazury - Poland
Contact:

Re: Suggestion for MikroTik - Bug Bounties

Thu May 03, 2018 1:23 am

++1
 
User avatar
slimmerwifi
just joined
Posts: 13
Joined: Tue Aug 01, 2017 6:05 pm
Location: Netherlands

Re: Suggestion for MikroTik - Bug Bounties

Thu May 03, 2018 9:27 am

+1 HackerOne is awesome
We manage 50+ corporate wifi networks in the Netherlands using Mikrotik & Cloudcore equipment.

Who is online

Users browsing this forum: erlinden, eworm, Google [Bot], robertkjonesjr, sindy, svmk and 58 guests