eLearnSecurity Blog

Get 1 Million Air Miles with United Airlines Bug Bounty Program

eLearnSecurity students, want to get 1 million air miles? Go get yourself a reward with United Airlines Bug Bounty Program!

American airline company, United Airlines, launched a bug bounty program (a first in the airline industry) rewarding information security researchers as much as 1 million air miles for finding high-critical vulnerabilities in their websites, applications or online portals.

united airlines security

Photo source: Robert Couse-Baker

1 Million Air Miles Bug Bounty Reward

United Airlines is the largest airline in the world based on the number of destinations served and they are joining the ranks of companies who want to reward IT security researchers for finding flaws in their systems.

“We are committed to protecting our customers’ privacy and the personal data we receive from them, which is why we are offering a bug bounty program. We believe that this program will further bolster our security and allow us to continue to provide excellent service.” – a statement from their website.

Examples of bugs that IT Security researchers can submit are Cross-site request forgery (CSRF), Cross-site scripting (XSS), bugs on their customer-facing websites (united.com, beta.united.com, mobile.united.com), Authentication bypass, Remote code execution, etc. The rewards vary according to the vulnerability classification. You can view the full details of the bug bounty program here: United Airlines Bug Bounty Program.

This is a positive step towards ensuring that no bugs remain undisclosed. It’s something that other airline companies might be interested in emulating. Security is very crucial and nobody wants to get hacked. One can only imagine the destructive effects not only to ticketing systems and lost revenue, but life-threatening attacks as well.

The fight for security is common in tech companies and bug bounty programs are used by top businesses to entice IT researchers to submit their findings in exchange for a reward. Microsoft Bug Bounty and Google Bug Bounty programs are some to name a few. Find security bugs and fly for free with United Airlines!

Train Yourself to Find Security Vulnerabilities

Don’t know how to find security vulnerabilities and flaws? Learn to do so by enrolling yourself in pentesting training courses! You will understand how to conduct professional penetration tests on networks, web applications and mobile applications and find vulnerabilities in these platforms. More information here: eLearnSecurity training courses

Tags: , , , , , , , ,

Leave a Reply

Your email address will not be published.

Go to top of page