Apr Meetup - "Bug Bounty" & "Vulnerability Disclosures"

This is a past event

144 people went

Government Technology Agency of Singapore

10 Pasir Panjang Rd · Singapore

How to find us

Mapletree Business City, Block 10, Level 10

Location image of event venue

Details

AGENDA
- Food, Drinks & Networking (20mins)
- Introduction & Announcement (10mins)
- "Bug Bounty - A Two-Sided Collaboration" by David Zhao (~30 mins)
- "Vulnerability Disclosures - The Good, Bad & Ugly" by Andre Ng (~30 mins)

THANK YOU!
VENUE SPONSOR: GovTech
F&B SPONSOR: GovTech

ABSTRACTS
BUG BOUNTY - A TWO-SIDED COLLABORATION
In this sharing, we will discuss bug bounties as one of the few solutions to make the Internet safe for everyone. We discuss what are the challenges; what is being done, where are the gaps, why and how bug bounties can help resolve them to make the Internet safer. Finally, we discuss the tips for hackers and business to keep in mind to run successful bug bounty. Talk level: Beginner.

VULNERABILITY DISCLOSURES - THE GOOD, BAD & UGLY
In this sharing, we will discuss the various paths of vulnerabilities disclosures and its corresponding consequence. We will also discuss the various channels or programmes available in Singapore with an analysis of recent disclosures within Singapore and the community. This sharing targets cybersecurity professionals who want to contribute responsibly and constructively to the larger community with the possibility of financial rewards. Talk level: Beginner.

Recommended readings:
[1] Responsible Disclosure - The Four Paths | https://www.div0.sg/single-post/2017/06/03/Responsible-Disclosure
[2] Sending Spam SMSes via a Free WiFi Service | https://www.div0.sg/single-post/sending-spam-SMSes-via-free-wifi-service
[3] Not So Lucky Draw | https://www.div0.sg/single-post/2017/09/04/NOT-SO-LUCKY-DRAW

BIOS
DAVID ZHAO is a passionate evangelist of bug bounties for businesses in the region and the community. At HackerOne, he leads the enterprise solutions team and work with enterprise businesses from various industries on bug bounty programmes. He strives to deliver successful programmes through best practices and right resourcing.

ANDRE NG has been with this community (formally Edgis) for more than 6 years. At Div0, he helps to manage the responsible disclosure coordination programme. As much as possible, he volunteers for outreach activities by the cybersecurity awareness alliance representing Div0. At GovTech, he leads bug bounty programes and other related efforts for the civilian government of Singapore.

FOOD BY ELSIE'S KITCHEN (HALAL CATERER)
- Olive Rice
- Fried Mee Siam
- Curry Vegetables
- Teriyaki Chicken
- Deep Fried Sweet & Sour Fish
- Pulut Hitam
- Cordial Barley

VENUE LAYOUT
Sitting and standing. Limited seats available at the venue. First come first serve basis.