X

我们使用cookie,以确保适合你的经验

我们用饼干和其他跟踪技术来提高你的浏览体验在我们的网站上,显示个性化内容和有针对性的广告,分析网站流量,并理解我们的观众来自哪里。你也可以阅读我们的隐私政策,我们使用cookie来确保你在我们的网站上的最好的体验。

选择我接受,或继续在网站上,你同意我们使用饼干条款和条件

得到应用
\"\"BENGALURU: Shashank Kumar, a second-year engineering student, has been swamped this winter break. As a freelance white hat hacker, he has been spending most of his vacation scanning payment applications and ecommerce websites for security vulnerabilities.
\n
White hat hackers, or ethical hackers<\/a>, who scope out and report bugs in software are in high demand globally. Technology giants including Facebook<\/a>, Twitter<\/a>, Uber<\/a> and Dropbox<\/a> spend millions on bug-bounty programmes every year rewarding lone-wolf white hat hackers for finding weaknesses in their applications. Companies also specifically hire these hackers to probe their apps and websites.
\n
\"Indian companies have now woken up to cybersecurity,\" says 22-year-old Kumar, who has been approached by several Indian firms post the government's recent demonetisation decision and embrace of cashless transactions. Kumar, who has signed nondisclosure agreements with these companies, says he has earned about Rs 1.2 lakh in the past two months alone. The spike in online transactions since November has put digital payment companies under severe scrutiny, with users and experts questioning their readiness against sophisticated cyberattacks<\/a>. And what better approach to safeguard systems than to put them under attack by the good guys?
\n
\nPrakhar Prasad, a white hat hacker, is a student of computer application.During the past two months, he has been busy on assignments for big payment companies trying to worm his way into their payment gateways to find leaks. Prasad gets paid by the severity of the bug he discovers. A few companies also pay him on a monthly contract, in the range of $500 to $600 a month.Overall, he's made up to Rs 4 lakh since November.
\n
\nPrasad, now 22, has been participating in bug-bounty programmes since he was 16. But this is the first time he is working for Indian companies.
\n
\"Security is a new concept for Indian companies,\" says Prasad, who has found bugs for Google<\/a>, Facebook<\/a>, Twitter<\/a> and PayPal<\/a>, among others.
\n
\nUnlike in the US, Indian organisations are not under an obligation to publicly declare leakage or theft of data, which is why such leakages are hardly reported publicly by Indian companies. It could possibly also explain why finding bugs in their own platforms hasn't been a priority of Indian organisations, until now.
\n
Indian online payment companies have been announcing various measures, including hiring ethical hackers<\/a>, to beef up security against online frauds and attacks. In a previous email to ET, digital wallet firm Paytm<\/a> said,\"While our existing measures provide watertight security to our systems, we are still on the lookout for unknown threats to address, for which we also invite white-hat hackers to find potential threats in our systems.\"
\n
\nEven so, Indian companies have a different approach to bug-hunting programmes, says Kumar. Unlike global companies that declare bugs publicly and reward hackers depending on the severity of the bugs found, Indian companies want it all to be hush-hush. A hacker reports a bug and receives an agreed upon price. Generally, a handsome amount, says Kumar.
\n
Globally, security platforms such as HackerOne<\/a> also facilitate bug-bounty programmes, connecting white hat hackers with companies.
\n
\nIn India, however, white hat hackers are discovered by virtue of their online profiles, says Anand Prakash, bug-bounty hunter who got famous for finding a vulnerability in Facebook and earning $15,000 for it.
\n
\n\"In most cases, it is the chief technology officer or director of a company who emails you asking if you'd be interested in an assignment,\" says Prakash, 24, who has taken up three assignments in the past two months.
\n
\n\"Having an active online profile and reporting issues profile and reporting issues regularly is important,\" says Pranav Hivarekar, 22, who is doing a Masters in Cybersecurity and Privacy at New Jersey Institute of Technology.\n\n<\/body>","next_sibling":[{"msid":56324926,"title":"IT sector in Gujarat may attract Rs 2 lakh crore investment by FY21","entity_type":"ARTICLE","link":"\/news\/it-sector-in-gujarat-may-attract-rs-2-lakh-crore-investment-by-fy21\/56324926","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[],"msid":56325112,"entity_type":"ARTICLE","title":"Post demonetisation, ethical hackers are in high demand by payment apps","synopsis":"Unlike in the US, Indian organisations are not under an obligation to publicly declare leakage or theft of data, which is why such leakages are hardly reported publicly by Indian companies. It could possibly also explain why finding bugs in their own platforms hasn't been a priority of Indian organisations, until now.","titleseo":"telecomnews\/post-demonetisation-ethical-hackers-are-in-high-demand-by-payment-apps","status":"ACTIVE","authors":[{"author_name":"Shadma Shaikh","author_link":"\/author\/479244911\/shadma-shaikh","author_image":"https:\/\/etimg.etb2bimg.com\/authorthumb\/479244911.cms?width=100&height=100","author_additional":{"thumbsize":false,"msid":479244911,"author_name":"Shadma Shaikh","author_seo_name":"shadma-shaikh","designation":"Journalist","agency":false}}],"Alttitle":{"minfo":""},"artag":"ET Bureau","artdate":"2017-01-04 08:45:33","lastupd":"2017-01-04 08:48:14","breadcrumbTags":["Google","Facebook","Twitter","Paypal","cyberattacks","Dropbox","Devices","PayTM","Uber","Ethical hackers","HackerOne"],"secinfo":{"seolocation":"telecomnews\/post-demonetisation-ethical-hackers-are-in-high-demand-by-payment-apps"}}" data-authors="[" shadma shaikh"]" data-category-name="" data-category_id="" data-date="2017-01-04" data-index="article_1">

demonetisation,道德黑客在高需求支付应用

不像在美国,印度组织没有义务公开声明泄露或窃取数据,这就是为什么这样的泄漏是由印度公司几乎没有公开报道。这也可能解释为什么发现错误在自己的平台上没有优先的印度组织,直到现在。

Shadma谢赫
  • 更新2017年1月4日08:48点坚持
班加罗尔:Shashank Kumar工程二年级的学生,已经淹没了这个寒假。作为一个自由白帽黑客,他已经花了他大部分的假期扫描付款应用程序和电子商务网站的安全漏洞。

白帽黑客,或者道德黑客找出并报告bug在全球软件的需求十分旺盛。科技巨头包括脸谱网,推特,超级Dropbox每年花费数百万bug-bounty项目奖励独自作案白帽黑客寻找他们的应用程序的弱点。公司还专门聘请这些黑客探测他们的应用程序和网站。

“印度企业已经意识到网络安全,”22岁的Kumar说,他已与几家印度公司发布的政府最近demonetisation决定和拥抱无现金交易。库马尔,与这些公司签署了保密协议,说他赢得了约1.2 Rs多数仅在过去两个月。自去年11月以来的在线交易让数字支付公司面临严重的审查,与用户和专家质疑他们对复杂的准备网络攻击。什么更好的方法来维护系统比好人把它们受到攻击的?

白帽黑客Prakhar普拉萨德,是一个学生的计算机应用程序。在过去的两个月里,他一直在忙作业大支付公司试图蠕虫到支付网关发现泄漏。普拉萨德被错误的严重性支付他发现。一些公司也支付每月的合同,他在500到600美元一个月。总的来说,他是由Rs 4 11月以来多数。

普拉萨德,现在22岁,16岁以来一直参与bug-bounty项目。但这是他第一次为印度公司工作。

“安全是印度公司的新概念,”普拉萨德说,他发现bug谷歌,脸谱网,推特贝宝等等。

不像在美国,印度组织没有义务公开声明泄露或窃取数据,这就是为什么这样的泄漏是由印度公司几乎没有公开报道。这也可能解释为什么发现错误在自己的平台上没有优先的印度组织,直到现在。

印度的在线支付公司已经宣布的各种措施,包括招聘道德黑客、加强安全打击网络欺诈和攻击。在之前的邮件等,电子钱包Paytm说,“尽管我们现有的措施提供无懈可击的安全系统,我们仍在寻找未知的威胁来解决,我们也邀请白帽黑客发现潜在威胁我们的系统。”

即便如此,印度公司有不同的方法来找出bug项目,Kumar说。与全球公司公开宣布bug和奖励黑客取决于缺陷的严重程度发现,印度公司希望这一切都是秘密进行。一个黑客报告bug和接收一个商定的价格。一般来说,一个英俊的,Kumar说。

在全球范围内,安全平台等HackerOne也便于bug-bounty项目,与公司连接白帽黑客。

在印度,但是,白帽黑客发现由于他们的网上形象,阿南德•普拉卡什表示bug-bounty猎人了著名的寻找漏洞Facebook和收入15000美元。

“在大多数情况下,它是公司的首席技术官和导演邮件你问如果你会感兴趣的一个任务,”普拉卡什说,24日,谁拿了三个任务在过去的两个月。

“有一个活跃的网络配置文件和报告问题概要文件和报告问题经常是很重要的,”Pranav Hivarekar说22岁做硕士学位在新泽西理工学院的网络安全和隐私。
  • 发布于2017年1月4日,为我坚持

加入2 m +行业专业人士的社区

订阅我们的通讯最新见解与分析。乐动扑克

下载ETTelec乐动娱乐招聘om应用

  • 得到实时更新
  • 保存您最喜爱的文章
扫描下载应用程序
是第一个发表评论。
现在评论

评论

现在评论 阅读评论(1)
\"\"BENGALURU: Shashank Kumar, a second-year engineering student, has been swamped this winter break. As a freelance white hat hacker, he has been spending most of his vacation scanning payment applications and ecommerce websites for security vulnerabilities.
\n
White hat hackers, or ethical hackers<\/a>, who scope out and report bugs in software are in high demand globally. Technology giants including Facebook<\/a>, Twitter<\/a>, Uber<\/a> and Dropbox<\/a> spend millions on bug-bounty programmes every year rewarding lone-wolf white hat hackers for finding weaknesses in their applications. Companies also specifically hire these hackers to probe their apps and websites.
\n
\"Indian companies have now woken up to cybersecurity,\" says 22-year-old Kumar, who has been approached by several Indian firms post the government's recent demonetisation decision and embrace of cashless transactions. Kumar, who has signed nondisclosure agreements with these companies, says he has earned about Rs 1.2 lakh in the past two months alone. The spike in online transactions since November has put digital payment companies under severe scrutiny, with users and experts questioning their readiness against sophisticated cyberattacks<\/a>. And what better approach to safeguard systems than to put them under attack by the good guys?
\n
\nPrakhar Prasad, a white hat hacker, is a student of computer application.During the past two months, he has been busy on assignments for big payment companies trying to worm his way into their payment gateways to find leaks. Prasad gets paid by the severity of the bug he discovers. A few companies also pay him on a monthly contract, in the range of $500 to $600 a month.Overall, he's made up to Rs 4 lakh since November.
\n
\nPrasad, now 22, has been participating in bug-bounty programmes since he was 16. But this is the first time he is working for Indian companies.
\n
\"Security is a new concept for Indian companies,\" says Prasad, who has found bugs for Google<\/a>, Facebook<\/a>, Twitter<\/a> and PayPal<\/a>, among others.
\n
\nUnlike in the US, Indian organisations are not under an obligation to publicly declare leakage or theft of data, which is why such leakages are hardly reported publicly by Indian companies. It could possibly also explain why finding bugs in their own platforms hasn't been a priority of Indian organisations, until now.
\n
Indian online payment companies have been announcing various measures, including hiring ethical hackers<\/a>, to beef up security against online frauds and attacks. In a previous email to ET, digital wallet firm Paytm<\/a> said,\"While our existing measures provide watertight security to our systems, we are still on the lookout for unknown threats to address, for which we also invite white-hat hackers to find potential threats in our systems.\"
\n
\nEven so, Indian companies have a different approach to bug-hunting programmes, says Kumar. Unlike global companies that declare bugs publicly and reward hackers depending on the severity of the bugs found, Indian companies want it all to be hush-hush. A hacker reports a bug and receives an agreed upon price. Generally, a handsome amount, says Kumar.
\n
Globally, security platforms such as HackerOne<\/a> also facilitate bug-bounty programmes, connecting white hat hackers with companies.
\n
\nIn India, however, white hat hackers are discovered by virtue of their online profiles, says Anand Prakash, bug-bounty hunter who got famous for finding a vulnerability in Facebook and earning $15,000 for it.
\n
\n\"In most cases, it is the chief technology officer or director of a company who emails you asking if you'd be interested in an assignment,\" says Prakash, 24, who has taken up three assignments in the past two months.
\n
\n\"Having an active online profile and reporting issues profile and reporting issues regularly is important,\" says Pranav Hivarekar, 22, who is doing a Masters in Cybersecurity and Privacy at New Jersey Institute of Technology.\n\n<\/body>","next_sibling":[{"msid":56324926,"title":"IT sector in Gujarat may attract Rs 2 lakh crore investment by FY21","entity_type":"ARTICLE","link":"\/news\/it-sector-in-gujarat-may-attract-rs-2-lakh-crore-investment-by-fy21\/56324926","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[],"msid":56325112,"entity_type":"ARTICLE","title":"Post demonetisation, ethical hackers are in high demand by payment apps","synopsis":"Unlike in the US, Indian organisations are not under an obligation to publicly declare leakage or theft of data, which is why such leakages are hardly reported publicly by Indian companies. It could possibly also explain why finding bugs in their own platforms hasn't been a priority of Indian organisations, until now.","titleseo":"telecomnews\/post-demonetisation-ethical-hackers-are-in-high-demand-by-payment-apps","status":"ACTIVE","authors":[{"author_name":"Shadma Shaikh","author_link":"\/author\/479244911\/shadma-shaikh","author_image":"https:\/\/etimg.etb2bimg.com\/authorthumb\/479244911.cms?width=100&height=100","author_additional":{"thumbsize":false,"msid":479244911,"author_name":"Shadma Shaikh","author_seo_name":"shadma-shaikh","designation":"Journalist","agency":false}}],"Alttitle":{"minfo":""},"artag":"ET Bureau","artdate":"2017-01-04 08:45:33","lastupd":"2017-01-04 08:48:14","breadcrumbTags":["Google","Facebook","Twitter","Paypal","cyberattacks","Dropbox","Devices","PayTM","Uber","Ethical hackers","HackerOne"],"secinfo":{"seolocation":"telecomnews\/post-demonetisation-ethical-hackers-are-in-high-demand-by-payment-apps"}}" data-news_link="//www.iser-br.com/news/post-demonetisation-ethical-hackers-are-in-high-demand-by-payment-apps/56325112">