Cyber researcher cites need for vulnerability disclosure legislation

LEESBURG, VA -- A top cybersecurity researcher who helped set up “bug bounty” programs at the Pentagon and Microsoft said that legislation offering protections for “white-hat” hackers might be needed to incentivize the disclosure of cyber vulnerabilities to companies.

Katie Moussouris, founder and CEO of Luta Security and direct participant in the creation of the Defense Department and Microsoft bug bounty programs, said today during a vulnerability disclosure panel at the National Governors Association’s “Meet the Threat” cybersecurity summit here...