Data Security and Bug Bounty Programs: Lessons Learned from the Uber Breach and Security Researchers

February 6, 2018

WASHINGTON – U.S. Jerry Moran (R-K.S.), chairman of the Senate Subcommittee on Consumer Protection, Product Safety, Insurance, and Data Security will convene a hearing titled, “Data Security and Bug Bounty Programs: Lessons Learned from the Uber Breach and Security Researchers,” at 2:45 p.m. on Tuesday, Feb. 6, 2018. The hearing will examine the October 2016 Uber data breach, the overall value of so-called “bug bounty” programs and other approaches to identify vulnerabilities, and the allegations of impermissible payments by Uber to conceal the security incident.  

Witnesses:

  • Mr. Justin Brookman, Director for Consumer Privacy and Technology Policy, Consumers Union
  • Mr. John Flynn, Chief Information Security Officer, Uber Technologies, Inc.
  • Mr. Mårten Mickos, Chief Executive Officer, HackerOne, Inc.
  • Ms. Katie Moussouris, Chief Executive Officer, Luta Security, Inc.

*Witness list subject to change

Hearing Details:

Tuesday, February 6, 2018
3:00 p.m.


This hearing will take place in Russell Senate Office Building, Room 253. Witness testimony, opening statements, and a live video of the hearing will be available on www.commerce.senate.gov.

Webcast

Majority Statement

  • Chairman Jerry Moran

Minority Statement

  • Bill Nelson

Witness Panel 1