- My Forums
- Tiger Rant
- LSU Recruiting
- SEC Rant
- Saints Talk
- Pelicans Talk
- More Sports Board
- Fantasy Sports
- Golf Board
- Soccer Board
- O-T Lounge
- Tech Board
- Home/Garden Board
- Outdoor Board
- Health/Fitness Board
- Movie/TV Board
- Book Board
- Music Board
- Political Talk
- Money Talk
- Fark Board
- Gaming Board
- Travel Board
- Food/Drink Board
- Ticket Exchange
- TD Help Board
Customize My Forums- View All Forums
- Show Left Links
- Topic Sort Options
- Trending Topics
- Recent Topics
- Active Topics
Started By
Message
United Offers 1 Million Miles to Hackers to Find Flaws in Network
Posted on 5/15/15 at 2:45 pm
Posted on 5/15/15 at 2:45 pm
quote:
The more severe the flaw, the more hackers can earn from identifying them. Hackers who discover very serious security flaws could earn up to one million miles, while those who report less serious bugs in the airline’s mobile network will receive between 50,000 and 250,000 miles.
Forbes
Posted on 5/15/15 at 2:47 pm to BACONisMEATcandy
quote:
up to one million miles
I see this not going how United intended.
Posted on 5/15/15 at 2:48 pm to BACONisMEATcandy
If it's anything like the regular United points program, none of those miles will actually go towards an elite status.
Posted on 5/15/15 at 2:49 pm to BACONisMEATcandy
I don't think United realizes just how bad they fricked up doing this.
Posted on 5/15/15 at 2:50 pm to upgrayedd
quote:
If it's anything like the regular United points program, none of those miles will actually go towards an elite status.
Don't know why you'd care when you have one million miles.
That's worth at least $10,000 in airfare first class, etc etc.
I'm not going to do the math on it
Posted on 5/15/15 at 2:52 pm to Henry Jones Jr
Jesus. United about to get fricking destroyed.
Can't wait to go to /b
Can't wait to go to /b
Posted on 5/15/15 at 2:52 pm to colorchangintiger
yeah, i see this having the potential for being very bad for their business.....reservations cancelled, flights delayed, etc.
Posted on 5/15/15 at 2:52 pm to Teddy Ruxpin
So how would the worlds greatest anonymous hackers go about collecting those miles? I'm sure they just have to send in their name and address.
Posted on 5/15/15 at 2:53 pm to Henry Jones Jr
quote:
I don't think United realizes just how bad they fricked up doing this.
Bug bounty programs are pretty standard stuff at this point. The only thing that is unique is that they're paying out in miles instead of cash.
Posted on 5/15/15 at 2:54 pm to Blizzard of Chizz
quote:
So how would the worlds greatest anonymous hackers go about collecting those miles? I'm sure they just have to send in their name and address
Interesting situation here. United is asking them to be hacked, they are wanting people to do this to help them improve their business. So let's say Joe Hacker does his thing and sends them a report or whatever. Woudl he get in any legal trouble for identifying himself? I mean, if he's as good as we're to assume in this hypothetical, if the police called him in for questioning or something he could deny doing anything like this before, and they would really have no proof of him doing it either.
Posted on 5/15/15 at 2:54 pm to upgrayedd
quote:
If it's anything like the regular United points program, none of those miles will actually go towards an elite status.
There is a difference between status miles and redeemable miles
This post was edited on 5/15/15 at 2:56 pm
Posted on 5/15/15 at 2:59 pm to WG_Dawg
quote:
Interesting situation here. United is asking them to be hacked, they are wanting people to do this to help them improve their business. So let's say Joe Hacker does his thing and sends them a report or whatever. Woudl he get in any legal trouble for identifying himself? I mean, if he's as good as we're to assume in this hypothetical, if the police called him in for questioning or something he could deny doing anything like this before, and they would really have no proof of him doing it either.
Finding a vulnerability and even writing an exploit for it are not illegal and what United wants. Vulnerability disclosure happens all the time and is encourage by big companies usually with cash payouts (miles in this case). You only break the law when you actively exploit the vulnerability without the permission of the company.
This post was edited on 5/15/15 at 3:03 pm
Posted on 5/15/15 at 3:09 pm to BACONisMEATcandy
So if somebody hacks one of their planes and takes it over in midflight, does that count as serious? Would that person have immunity from prosecution?
This post was edited on 5/15/15 at 3:11 pm
Posted on 5/15/15 at 3:22 pm to LSUsmartass
quote:
So if somebody hacks one of their planes and takes it over in midflight, does that count as serious? Would that person have immunity from prosecution?
There's a difference between finding out how to access a plane to take it over midflight and actually taking over the plane midflight.
You don't have to take over the plane to report the vulnerability
Posted on 5/15/15 at 10:47 pm to Teddy Ruxpin
That would be a million point vulnerability in my book.
Posted on 5/15/15 at 10:49 pm to lynxcat
quote:
That would be a million point vulnerability in my book
Ya I'd think so!
Posted on 5/15/15 at 10:50 pm to Blizzard of Chizz
quote:
So how would the worlds greatest anonymous hackers go about collecting those miles? I'm sure they just have to send in their name and address.
Nah, the homepage of United will just include a big "UNITED OWES CuMsL1NgEr99 1M MILES LOL!" note right next to their Equal Opportunity Employer message.
Posted on 5/15/15 at 11:12 pm to LSUsmartass
quote:
So if somebody hacks one of their planes and takes it over in midflight, does that count as serious? Would that person have immunity from prosecution?
While it's true that Boeing and Airbus aren't buildings airliners that are as reasonably secure as possible, it's also true that this is impossible. It cannot happen. There's no means for it to happen.
Posted on 5/15/15 at 11:33 pm to BACONisMEATcandy
I think it is a pretty damn good idea and am now pondering on something like this where I work....
Posted on 5/15/15 at 11:56 pm to usc6158
quote:I knew very little about this topic so this was one of the more informative posts I've read in a while.
Finding a vulnerability and even writing an exploit for it are not illegal and what United wants. Vulnerability disclosure happens all the time and is encourage by big companies usually with cash payouts (miles in this case). You only break the law when you actively exploit the vulnerability without the permission of the company.
Popular
Back to top
Follow TigerDroppings for LSU Football News