Cybersecurity

117 readers

5 users here now

founded 1 year ago

MODERATORS

uid_0

-3

Thought experiment on legitimizing hacking (self.cybersecurity)

submitted 9 months ago by Agility0971 to c/cybersecurity

2 comments fedilink hide all child comments

It is common for companies to neglect financing in cyber security for a quick short term gain. And at the same time the laws are created such that an offensive hacker would be the criminal. By turning the law around the blame would be on the company for building insecure systems, just like it is right now companies get problems if they would create unsafe products for consumers.

What do you think would happen if laws would change in such a way, that gaining unauthorized access would become legal? Note that I've intentionally excluded permission to share sensitive information. Would love to read your responses and thoughts

you are viewing a single comment's thread
view the rest of the comments

[–] slazer2au 2 points 9 months ago (1 children)

Legitimised hacking exists. Bug Bounty programs exist like Bugcrowd, HackerOne, Open Bug Bounty, and Hack The Box just to name a few.

Then there are all the pwn2own contests too.

[–] Agility0971 0 points 9 months ago

I think you misunderstood. Obviously bug bounty programs exists, and some companies participate in them. The idea was on a legislative level where this would apply for all companies.