Unlock launches the most westerly bug bounty!

For the past 9 years, the Unlock Your Brain, Harden Your System conference has been bringing together digital and IT security enthusiasts in Brest for two days of workshops, challenges and high-level conferences led by national and international experts.

Taking advantage of the large number of cybersecurity experts gathered in Brest, the Cantine numérique,  BZHunt and YesWeHack have decided to complement the conference program with a Bug Bounty competition for students.

The aim of this event is to promote cybersecurity issues, challenges and professions to students, as well as a new approach to security auditing/pentesting for software publishers. The Bug Bounty competition offers these students, who are part of a digital course at one of France’s leading business schools, the chance to confront real-life vulnerability research cases, in a dynamic and friendly atmosphere.

This year, for 8 hours, students will be challenged to discover security flaws in online sales websites and professional connected objects, provided by our partners.

What is a bug bounty?

Photo de Jefferson Santos sur Unsplash

A Bug Bounty program involves mobilizing a community of ethical cybersecurity researchers to proactively detect vulnerabilities in a company’s or product’s information systems.

These researchers are tasked with identifying vulnerabilities and reporting them to the company, in order to improve the robustness of systems through a continuous improvement process.

The aim is to create a virtuous circle of cybersecurity, while enabling software publishers to provide their customers with ever more secure systems.

How does a bug bounty work?

Several partners have agreed to challenge students to find cybersecurity flaws in websites and connected equipment. The students are tasked with mobilizing their knowledge and organizing their teams to detect vulnerabilities. When vulnerabilities are discovered, students report their findings on the YesWeHack platform.

The BZHunt teams, supported by a number of experts and partner teams, are then tasked with qualifying the identified vulnerabilities. If the vulnerabilities are accepted, they are qualified and fixed by the publishers. Students earn points for each qualified vulnerability.

As a reward, the most skilful teams and students will be awarded prizes according to the points they have accumulated. These points are based in particular on the importance of the vulnerability identified and the quality of the research work (method used, clarity of the report, recommendations, etc.).

The entire program takes place within a strict framework, with students required to comply with precise ethical rules for each product tested.

 

Practical information

Date: November 8th, 2024
Location: Brest
Times: 10 a.m. to 6 p.m.
Perimeters: Be patient! They will be unveiled on the day.