Technology
Cybersecurity

Capital One Breach a Win for Crowdsourced Cybersecurity

  • Some offer pats on the back, others dangle ‘bug bounties’
  • Security researcher alerted bank to leaked data in GitHub file
Photographer: Mark Abramson/Bloomberg
Have a confidential tip for our reporters? Get in Touch
Before it’s here, it’s on the Bloomberg Terminal
Bloomberg Terminal LEARN MORE
By and
Lock
This article is for subscribers only.

When Ali Tutuncu found a vulnerability in Capital One Financial Corp.’s software in March, the company fixed the flaw in 20 days. An independent security researcher, Tutuncu said the bank thanked him and added him to its page of fame.

“They did not pay financially,” he said. “Still, it was a nice experience.”

Have a confidential tip for our reporters? Get in Touch
Before it’s here, it’s on the Bloomberg Terminal
Bloomberg Terminal LEARN MORE
HomeBTV+Market DataOpinionAudioOriginalsMagazineEvents
News
MarketsEconomicsTechnologyPoliticsGreenCryptoAI
Work & Life
WealthPursuitsBusinessweekCityLabEqualityPursuitsWork Shift
Market Data
StocksCommoditiesRates & BondsCurrenciesFuturesSectorsEconomic Calendar
Explore
NewslettersExplainersThe Big TakeGraphicsSubmit a TipAbout Us
Terms of ServiceTrademarksPrivacy Policy
CareersMade in NYCAdvertise
Ad Choices
Help©2024 Bloomberg L.P. All Rights Reserved.