News highlights
- Partners with Bugcrowd to launch a first of its kind private Bug Bounty program for printers
- Builds on HP’s cybersecurity commitment to deliver the world’s most secure printers
- Awards up to $10,000 to support vulnerability identification
Dubai, United Arab Emirates, — HP Inc. announced the industry’s first print security bug bounty program, underscoring its commitment to deliver the world’s most secure printers[1]. HP selected Bugcrowd, a global leader in crowdsourced offensive security, to manage vulnerability reporting, further enhancing HP’s business printer portfolio. With HP’s extensive history of device security innovation and driving new industry security standards, this print-focused bug bounty program is yet another way HP is leading the way when it comes to providing the highest-level security for its customers and partners.
“As we navigate an increasingly complex world of cyber threats, it’s paramount that industry leaders leverage every resource possible to deliver trusted, resilient security from the firmware up,” said Shivaun Albright, HP's Chief Technologist of Print Security. “HP is committed to engineering the most secure printers in the world.”
HP is the first company to invest in a dedicated bug bounty program for printing devices, offering customers protection from attacks that are targeting both businesses and employees. According to Bugcrowd’s recent report, the top emerging attackers are focused on endpoint devices, and the total print vulnerabilities across the industry have increased 21% during the past year.
“CISOs are rarely involved in printing purchase decisions yet play a critical role in the overall health and security of their organisation,” said Justine Bone, CEO, MedSec and Security Advisory Board member for HP. “For decades, HP has made cybersecurity a priority rather than an afterthought by engineering business printers with powerful layers of protection. And in doing so, HP is helping to support the valuable role CISOs play in organisations of every size.”
The Bug Bounty program includes:
- Vulnerabilities found by researchers in the private program are required to be reported to Bugcrowd
- Reporting a vulnerability previously discovered by HP will be assessed, and a reward may be offered to researchers as a good faith payment
- Bugcrowd will verify bugs and reward researchers based on the severity of the flaw and awards up to $10,000
More on HP’s business print portfolio and security features can be found here: http://hp.com/go/printersthatprotect
About HP
HP Inc. creates technology that makes life better for everyone, everywhere. Through our portfolio of printers, PCs, mobile devices, solutions, and services, we engineer experiences that amaze.
More information about HP Inc. is available at http://www.hp.com.
[1] Based on HP review of 2018 published security features of competitive in-class printers. Only HP offers a combination of security features that can monitor to detect and automatically stop an attack then self-validate software integrity in a reboot. For a list of printers, visit hp.com/go/PrintersThatProtect. For more information: hp.com/go/printersecurityclaims.
© Press Release 2018Disclaimer: The contents of this press release was provided from an external third party provider. This website is not responsible for, and does not control, such external content. This content is provided on an “as is” and “as available” basis and has not been edited in any way. Neither this website nor our affiliates guarantee the accuracy of or endorse the views or opinions expressed in this press release.
The press release is provided for informational purposes only. The content does not provide tax, legal or investment advice or opinion regarding the suitability, value or profitability of any particular security, portfolio or investment strategy. Neither this website nor our affiliates shall be liable for any errors or inaccuracies in the content, or for any actions taken by you in reliance thereon. You expressly agree that your use of the information within this article is at your sole risk.
To the fullest extent permitted by applicable law, this website, its parent company, its subsidiaries, its affiliates and the respective shareholders, directors, officers, employees, agents, advertisers, content providers and licensors will not be liable (jointly or severally) to you for any direct, indirect, consequential, special, incidental, punitive or exemplary damages, including without limitation, lost profits, lost savings and lost revenues, whether in negligence, tort, contract or any other theory of liability, even if the parties have been advised of the possibility or could have foreseen any such damages.
