How GM works with hackers to enhance their security

GM has a long list of firsts, including Super Cruise in their 2018  Cadillac CT6, the first semi-autonomous driving system where drivers are permitted to completely remove their hands from the steering wheel.

The company established another leadership position with the 2016 launch of a HackerOne Response Vulnerability Disclosure Policy (VDP). By 2018, hackers had reported over 700 bugs.

“Researchers are engaged, and the quality of information we’re receiving is extremely valuable and is helping us improve security across all areas of GM.”
Jeff Massimilla, Vice President Global Cybersecurity

Read the GM Case Study to learn:

  • Some of the more notable bugs reported to GM
  • How GM uses its position in the industry to drive security through the automotive supply chain
  • Why GM expanded their VDP to a Private Bounty program and how they ensure hackers have the necessary resources to be successful