Fiat Chrysler rewards hackers who expose cyber-security flaws
Shawn Molnar, Autofocus.ca
Published Monday, July 18, 2016 1:47PM EDT
Last Updated Monday, July 18, 2016 1:52PM EDT
Fiat Chrysler Automobiles is planning to unleash dozens of international hackers upon its cars, pickups, and SUVs in an effort to hunt down weak spots in its vehicles’ on-board computers and connectivity systems.
Dubbed the “Bug Bounty Program,” the effort to clamp down on the brand’s automotive cyber-security will be led by Bugcrowd, a San Francisco-based company specializing in crowd-sourced cyber-security solutions.
Using the expertise of an eclectic group of hackers from all over the world, FCA hopes to find bugs and weak spots before criminal hackers have a chance to exploit these weaknesses for nefarious purposes.
Through the bug-hunting program, hackers will find and submit vulnerabilities in exchange for cash and social recognition, according to Casey Ellis, CEO and founder of Bugcrowd.
“The first to find each unique vulnerability that’s within the scope of the program will get a reward,” said Ellis. “Obviously the goal is to have those vulnerabilities fixed before bad guys come along and do it for real.”
FCA previously performed a software patch and recalled some 1.4 million vehicles after hackers were able to remotely control a Jeep Cherokee via its on-board computer system. Those hackers notified FCA long before revealing their successful hack in order to protect the public.