The National Bank of Australia (NAB) has launched a bug bounty program, offering money to security researchers to uncover unknown vulnerabilities in the bank's environment.
The bank partnered with security firm Bugcrowd on the new program. To participate, individuals must have an "Elite Trust Score" on the Bugcrowd platform.
Nick McKenzie, Chief Executive Officer of the National Bank of Australia for Business Security, said the use of "controlled crowdsourcing" methods would help the National Bank further test and strengthen existing capabilities in cybersecurity.
"Specialized security investigators can uncover vulnerabilities in our company," said McKenzie. "Preventive security measures in cyberspace is vital in "hyperconnected environment"Of today, where new threats are constantly appearing."
McKenzie said the move to a bounty system gives NAB the opportunity to "attract a wider range of security researchers from around the world." people. ” "Diversity is a critical but often useful security factor."
NAB admitted last July that some of the personal data of some 13.000 customers had been "uploaded" without authorization to servers two data providers.
NAB also admitted in early 2017 that it had sent details of about 60.000 customers in a mistake emails and not where it should be.