Skip to content

H1: Another road to securing software and the internet — via bug bounties

H2: Hacktrophy’s bug bounty program is growing and shows the inner workings of how software code is secured, one ethical hacker at a time.

To fulfill our mission of helping internet users “enjoy safer technology,” ESET has many tools at its disposal. This includes highly awarded security products, widely recognized malware research, and public security awareness and outreach via WeLiveSecurity. However, there is another critical tool that often falls under the radar: bug hunting. ESET intensively cooperates and collaborates with other security vendors, professional bodies, and the talented open community of software developers, researchers, engineers, and, well … hackers. The hackers in question are the ethical type and may hold any of the aforementioned professions, or they may be students and coding enthusiasts who have a keen eye for anomalies in software code and product function. This community constitutes an army of curious, dedicated, and talented ethical hackers who act as a network of global IT talent that ensures that software, including ESET security software, is as functional and safe as possible. Organizing chaos — bug hunting at scale Via globally available bug bounty programs, software of all kinds receives thorough crowdsourced testing conducted by an incredible diversity of talented bug hunters. From games and productivity platforms and financial applications, security-minded bug hunters help to de-risk and improve critical detection, protection, and analysis software that keeps the internet, the most fundamental piece of critical infrastructure, safe. When imagining the diversity of software needed to operate the internet securely, and the multitude of other software interacting with it, we start to see the scale of the task of debugging and de-risking software. Since software (and its code) is constantly evolving, each iteration can and should be checked for bugs and vulnerabilities.

Via Hacktrophy, a Slovakia-based bug bounty platform, ESET and partnering organizations Citadelo and Nethemba, all active in cyber security, set out to help open another avenue to secure the internet and, as a beneficial side effect, advance opportunities for both local and global talent development. The results? Increasing interest in Hacktrophy’s platform from both ethical hackers and companies looking to test their apps, portals, and enterprise-grade software year over year — signals that both the mission and the goals are being met.

Hacktrophy has responded well to business demand and the growing pressure on software providers and security technologists alike to secure code. And just as software itself evolves, so is Hacktrophy’s approach evolving.

“Simply, we are upping our game. Increasing the bug bounties at Hacktrophy reflects the significant growth of our platform, but more importantly, an understanding of the critical role that bug hunters play in creating a safe IT ecosystem,” explained Peter Katrinec, managing director at Hacktrophy. Katrinec continued, “the COVID-19 pandemic has put an exclamation mark on that with a massive uptick in the exploitation of bugs, security issues, and large-scale vulnerabilities, which can bring global consequences.”

Hacking into a career? Many IT talents enjoy a diversity of challenges, including coding in multiple languages, reverse engineering, penetration testing, and IT administration, all of which can be applied to bug hunting. Curiosity aside, bug hunting can lead to bigger rewards, whether in cash or opportunities to propel a budding cybersecurity career.

Cash rewards are usually paid out via bug bounty programs, which are supported by thousands of software vendors globally — vendors whose products are in the hands of everyone from governments, large organizations, and businesses all the way down to the billions of entrepreneurs and home computing, mobile, and IoT technology users. Getting involved with Hacktrophy’s bug bounty program is easy for both ethical hackers and businesses aiming to improve security.

Security, a growth industry These IT talents can ethically apply their knowledge to search for vulnerabilities in projects and products. These platforms act as intermediaries between ethical hackers who are hunting for bugs and the companies that need to identify and patch them. For an idea of scale, among the largest bug bounty platforms, Verizon Media regularly tops rankings in total payouts, reaching over $9.4 million USD in 2019, with the largest single award paid out at a record-setting $70,000.

While cash motivations can be significant, contributing to security in this way opens many options — for example, careers in cybersecurity. From security administration to penetration testing to malware research, the scope of work open to people looking to help secure software is vast.

With digitalization intensifying, so is the number of threat surfaces and other risks to the internet as a piece of critical infrastructure. Hacktrophy addresses this via a diverse set of service packages that cover short-term reviews of smaller applications, long-term testing where software may have a role in the collection of regulated data, and customized service packages delivering scheduled tests, audits, and other custom projects.

Motivated? Ethical? Interested? You can check out the ESET vulnerability reporting portal here, or register with Hacktrophy to share your brief, or for hackers … access a diversity of projects and cash bounties that may suit your specific interests and skills.

About Version 2 Limited
Version 2 Limited is one of the most dynamic IT companies in Asia. The company develops and distributes IT products for Internet and IP-based networks, including communication systems, Internet software, security, network, and media products. Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 Limited offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About ESET
For 30 years, ESET® has been developing industry-leading IT security software and services for businesses and consumers worldwide. With solutions ranging from endpoint security to encryption and two-factor authentication, ESET’s high-performing, easy-to-use products give individuals and businesses the peace of mind to enjoy the full potential of their technology. ESET unobtrusively protects and monitors 24/7, updating defenses in real time to keep users safe and businesses running without interruption. Evolving threats require an evolving IT security company. Backed by R&D facilities worldwide, ESET became the first IT security company to earn 100 Virus Bulletin VB100 awards, identifying every single “in-the-wild” malware without interruption since 2003.

ESET ramps up its consumer offering with new ESET HOME platform and ARM64 compatibility

BRATISLAVA — October 19, 2021 — Today, ESET, a global leader in cybersecurity, launched a new version of its consumer offering, which includes ESET NOD32 Antivirus, ESET Internet Security and ESET Smart Security® Premium. Users of these products will now have access to ESET HOME available as a mobile app or web portal to manage the security of all their Windows and Android home devices from one seamless and convenient interface.

Based on the ESET Threat Report T1 2021, the volume of cyberattacks in 2021 remained formidable, with a rise in threats targeting employees working remotely from home. According to customer research conducted by ESET, households often have a single person who takes care of IT security for everyone. As such, a solution that provides holistic security management at the home admin’s fingertips is crucial.

To effectively address home users’ requirements and provide top-level protection ESET is introducing LiveGuard, integrated within ESET Smart Security® Premium. LiveGuard provides an additional proactive layer of protection against never-before-seen types of threats. Additionally, ESET NOD32 Antivirus, ESET Internet Security and ESET Smart Security® Premium offer improved protection and a host of new features for customers.

At the center of the new offer is ESET HOME, a new and improved management platform that makes it easy to manage security at home whenever and wherever required. ESET HOME gives users comprehensive oversight of all their ESET solutions for Windows or Android devices in one place, allowing complete visibility of the current protection status of the various devices connected to their accounts.

Accessible via web portal and mobile app, the ESET HOME platform is designed with mobile users in mind and built for on-the-go security management. The application enables users to add, manage and share licenses with family and friends, and to manage Anti-Theft, Parental Control and Password Manager via the web portal.

Closely following the needs of its customers, ESET offers fresh improvements to its Banking & Payment Protection with extra security for customers accessing web-based cryptocurrency wallets, which are under ever-increasing threat by hackers, and banking websites for more secure ways of managing their assets.

In addition, ESET NOD32 Antivirus has been ported to ARM64 and is available for free in the beta channel.

Other key updates in the home security suite include:
 

  • ESET HOME — Parents can use ESET HOME to share licenses with family and friends or to monitor their children’s online activity and control their screen time in Parental Control (via the ESET HOME web portal).
  • LiveGuard — Integrated with ESET Smart Security® Premium, LiveGuard provides additional protection against never-before-seen types of threats, shielding users from the malware before its code executes. This service, personalized for each user, analyzes suspicious files, including documents, scripts, installers and executable files, in a safe sandbox environment. 
  • Protection improvements — Banking & Payment Protection, available with ESET Internet Security and ESET Smart Security® Premium will now have the option to run by default, protecting any supported browser with a hardened mode. Ransomware Shield has been bolstered with enhanced behavior-based detection techniques. Exploit Blocker has been improved to cover additional malicious techniques. 
  • Password Manager — Available with ESET Smart Security® Premium, Password Manager has been completely redesigned for improved security and ease of use. Password Manager is available in all major browsers as a browser extension and on Android and iOS devices as a native application. New features include support for KeePass and Microsoft Authenticator.   

Mária Trnková, consumer & IoT segment director at ESET, commented, “We are incredibly excited about this launch and to provide consumers with the very latest in cybersecurity protection. The updated product suite, including our new LiveGuard feature and the impressive ESET HOME platform, puts users firmly in control of their home cybersecurity needs and instills them with the confidence needed to manage multiple devices on the go. After more than a year of being heavily reliant on technology, and with the threat landscape constantly evolving, it is vital to us that our consumer users are protected with cutting-edge solutions that are easily accessible and best in class in terms of user experience.”

To find out more about the new features and improvements in the latest version of our consumer offering, head to https://eset.version-2.sg/.

About Version 2 Limited
Version 2 Limited is one of the most dynamic IT companies in Asia. The company develops and distributes IT products for Internet and IP-based networks, including communication systems, Internet software, security, network, and media products. Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 Limited offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About ESET
For 30 years, ESET® has been developing industry-leading IT security software and services for businesses and consumers worldwide. With solutions ranging from endpoint security to encryption and two-factor authentication, ESET’s high-performing, easy-to-use products give individuals and businesses the peace of mind to enjoy the full potential of their technology. ESET unobtrusively protects and monitors 24/7, updating defenses in real time to keep users safe and businesses running without interruption. Evolving threats require an evolving IT security company. Backed by R&D facilities worldwide, ESET became the first IT security company to earn 100 Virus Bulletin VB100 awards, identifying every single “in-the-wild” malware without interruption since 2003.

CyberLink Partners with FaceScan to Implement FaceMe® Facial Recognition in Temperature Screening Kiosks

TAIPEI, TAIWAN – Oct 19, 2021 –  CyberLink Corp. (5203.TW), a pioneer in AI and facial recognition technologies, today announced a partnership for the integration of its FaceMe® Facial Recognition into FaceScan’s temperature screening kiosks.

CyberLink Partners with FaceScan to Implement FaceMe® Facial Recognition in Temperature Screening Kiosks

The FaceScan no contact temperature screening kiosks come with check-in capabilities, temperature verification, live notifications, complete with people identification, powered by FaceMe®’s industry-leading facial recognition engine and rich feature set.

“Facial recognition is enhancing our everyday lives, from securing physical access and data protection, to enabling contactless experiences that are not only enjoyable but highly relevant for the fight against COVID-19,” said Dr. Jau Huang, Chairman and CEO, CyberLink. “Thanks to the accuracy, flexibility and comprehensive feature set of FaceMe®, we were uniquely positioned to provide FaceScan’s temperature screening kiosks with core functionalities such as guiding the thermal sensor to precisely measure temperature on the forehead, perform mask detection and accurately identify people even when they wear a mask, all while supporting a positive and unintrusive experience for customers and employees.”

CyberLink’s FaceMe® engine is ranked as one of the most accurate facial recognition technologies in the world by the renowned National Institute of Standards and Technology’s Facial Recognition Vendor Test (FRVT), with an accuracy rate of up to 99.7%. Even when a mask is worn, it maintains an accuracy rate of up to 98.9%.

“After evaluating a multitude of face recognition options, we chose FaceMe® for its affordability, speed, and accuracy. Our partnership with CyberLink and the integration of FaceMe® into our FaceScan thermal scanners, give us a notable competitive advantage,” said Theo Flores, CEO of FaceScan. “By integrating FaceMe®’s enhanced facial recognition, our thermal scanning solution is second to none. It allows us to match and temperature check people in less than a second, which amounts to a 300% increase in speed over our previous system,” Flores said.

FaceMe® is uniquely positioned to integrate edge-based AI facial recognition into a wide range of IoT and AIoT solutions. It is optimized to run on most hardware & software configurations. FaceMe® provides system integrators with fast, flexible, and precise facial recognition SDK solutions. It supports HTTP, C#, and C++ making it quick and flexible to deploy FaceMe® across a wide range of scenarios, including security monitoring, access control, public safety, smart retail, and home protection.

About Version 2 Limited
Version 2 Limited is one of the most dynamic IT companies in Asia. The company develops and distributes IT products for Internet and IP-based networks, including communication systems, Internet software, security, network, and media products. Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 Limited offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About CyberLink
Founded in 1996, CyberLink Corp. (5203.TW) is the world leader in multimedia software and AI facial recognition technology. CyberLink addresses the demands of consumer, commercial and education markets through a wide range of solutions, covering digital content creation, multimedia playback, video conferencing, live casting, mobile applications and AI facial recognition.  CyberLink has shipped several hundred million copies of its multimedia software and apps, including the award-winning PowerDirector, PhotoDirector, and PowerDVD.  With years of research in the fields of artificial intelligence and facial recognition, CyberLink has developed the FaceMe® Facial Recognition Engine. Powered by deep learning algorithms, FaceMe® delivers the reliable, high-precision, and real-time facial recognition that is critical to AIoT applications such as smart retail, smart security, and surveillance, smart city and smart home. For more information about CyberLink, please visit the official website at www.cyberlink.com