Bugcrowd urges moral hackers and CISOs to reply as deadline nears on UK Authorities’s Laptop Misuse Act session

The pioneering crowdsourced cybersecurity platform supplier believes elevated publicity for the session is important to have interaction the complete spectrum of views

London, UK – March 28 2023 – Bugcrowd, operator of the world’s main crowdsourced cybersecurity platform, at this time referred to as on unbiased cyber safety researchers, prospects of crowdsourced cybersecurity, and cybersecurity defenders at massive to contribute their views to the UK Authorities’s session on 1990’s Laptop Misuse Act. The deadline for submissions is lower than two weeks away, however it’s unclear whether or not enough events have contributed to make sure the UK Authorities can conduct a fully-informed overview.

Bugcrowd emblem

Amongst numerous points, respondents to the session are invited to touch upon the potential of a statutory authorized defence for hacking, if such actions had good-faith/benevolent motives. This transfer would mirror the USA’s reforms to charging guidelines underneath its Laptop Fraud and Abuse Act. The Dwelling Workplace has already indicated that such a authorized defence might “advance our entire of society method to cyber safety”, however is concurrently cautious of the potential for unintended penalties.

Bugcrowd founder Casey Ellis is main Bugcrowd’s response to the UK Authorities’s session. He mentioned: “Poor authorized safety for moral hackers might have the chilling impact whereby those that might contribute to creating the Web a safer place develop into afraid to take action. In Bugcrowd’s view, the UK must assume alongside the identical strains as america, which has clarified safety for respectable safety analysis actions through an vital Supreme Court docket ruling and a transparent DOJ dedication to not prosecute good-faith safety researchers.

“To be even clearer: folks construct software program, folks make errors, and errors create vulnerabilities. Amid the fast acceleration of know-how and the huge, ongoing, worldwide scarcity of expert cybersecurity professionals, Bugcrowd needs organisations and legislation enforcement to stay in a position to profit from “Neighbourhood look ahead to the Web” by decriminalising and inspiring anybody from the moral hacking ’ group to help. These moral, well-meaning and accountable researchers shouldn’t be put ready the place they could be prone to authorized jeopardy,” he added.

In Could 2021, the Dwelling Secretary introduced a overview of the Laptop Misuse Act (CMA). Step one within the overview was a public name for data looking for the views of stakeholders and the broader public, to determine and perceive whether or not there’s exercise inflicting hurt within the space coated by the CMA that isn’t adequately addressed by the present offences. The session closes on April sixth 2023, and submissions might be made through e-mail or in writing to the addresses on the Authorities’s session internet web page.

Bugcrowd is contributing to the session as a part of two {industry} teams, the Cybersecurity Coverage Working Group (CPWG) and the Hacker Coverage Coalition. Each these organisations shall be making submissions to the session reflecting the views of their respective members.

“Nonetheless, it’s nonetheless vital that as many as attainable people and organisations have their say on this,” mentioned Bugcrowd’s Ellis. “The UK wants a revised Act that not solely higher defines the distinction between the actions of malicious attackers who don’t have any intent to obey the legislation within the first place, and those that hack in good religion, discovering and disclosing vulnerabilities to allow them to be addressed earlier than they’re exploited.”


“Bugcrowd” is a trademark of Bugcrowd Inc. and its subsidiaries. All different logos, commerce names, service marks and logos referenced herein belong to their respective corporations.

About Bugcrowd
Bugcrowd is the industry-leading supplier of crowdsourced cybersecurity options purpose-built to safe the digitally linked world. At the moment’s enterprise calls for an offensive method to cybersecurity — and Bugcrowd presents the one resolution that orchestrates knowledge, know-how, and human intelligence to reveal blind spots. The Bugcrowd Safety Information Platform™ permits companies to proactively defend their organisation, fame, and prospects with merchandise like Bug Bounty, Penetration Testing-as-a-Service, and extra. Trusted by organisations throughout the globe, Bugcrowd uncovers and remediates vulnerabilities earlier than they interrupt enterprise by leveraging knowledgeable ingenuity and the data of world-class safety researchers. Primarily based in San Francisco, Bugcrowd is backed by Blackbird Ventures, Costanoa Ventures, Trade Ventures, Paladin Capital Group, Rally Ventures, Salesforce Ventures, and Triangle Peak Companions. Study extra at www.bugcrowd.com.

Media contact
Rose Ross, Omarketing Ltd, [email protected]

# # #