GovTech Singapore resolved 33 security weaknesses and awarded global hacker community over US$30,800 for contributing to a more secure and resilient smart nation
HackerOne and Singapore’s Government Technology Agency (GovTech), supported by the Cyber Security Agency of Singapore (CSA) announced the results of its third Government Bug Bounty Programme (GBBP), part of the Singapore Government’s ongoing initiative to build a secure and resilient Smart Nation, a government-wide initiative to improve the lives of citizens and increase business opportunities through the adoption of digital and smart technologies throughout Singapore.
Nearly 300 white hat hackers from around the world participated in GovTech’s third bug bounty program from November 18 to December 8, 2019, testing 13 public government Information and Communication Technology (ICT) systems, digital services and mobile applications with high end user touchpoints. Hackers discovered a total of 33 valid security vulnerabilities and earned US$30,800 in bounties, financial incentives awarded for submitting valid security vulnerabilities, making this the most successful program to date for the agency. Hackers from across the globe participated, including 72 local Singaporean hackers. Eugene Lim, a 24-year-old better known as @spaceraccoon, remained as the top hacker on the program, with local Singaporean hackers Samuel Eng (@samengmg) and Nicholas Lim (@kactros_n ) taking the top 3 positions.
“The Singapore Government continues to be an industry leader when it comes to cybersecurity,” said Paul Turner, VP of Sales, EMEA and APAC at HackerOne, “Hacker-powered security is the foundation of any mature and proactive security program. By providing an opportunity to engage local as well as global hacker talent, GovTech is not only delivering on its Smart Nations goals, but also enhancing the way it services its citizens in terms of safety, security, and opportunity. Through its close relationships with ethical hackers, the Singapore Government is one step ahead in the ongoing battle against cybercriminals and ensuring that end users are safe online.”
This latest bug bounty challenge occurs against the backdrop of an evolution in cybersecurity, where everyone from government agencies to Fortune 500 companies are embracing the positive power of ethical hackers. Policymakers across the globe are recommending hacker-powered security, with some even introducing legislation to encourage and even require adoption. Just last month, the Singapore Government announced a budget commitment of one billion Singaporean dollars (S$1 billion) over the next three years to help shore up the government’s cyber and data security capabilities. The Cyber Security Advisory Panel of the Monetary Authority of Singapore last year also recommended financial institutions adopt bug bounty programs as part of their cyber testing.