{"id":38927,"date":"2020-12-10T10:28:11","date_gmt":"2020-12-10T10:28:11","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/"},"modified":"2020-12-10T10:28:11","modified_gmt":"2020-12-10T10:28:11","slug":"uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/","title":{"rendered":"UK Ministry of Defence: We won&#8217;t prosecute bug bounty hunters \u2013 oh btw, we now have one of those"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/regmedia.co.uk\/2020\/04\/23\/shutterstock_bug.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<p>The UK&#8217;s Ministry of Defence has launched a bug bounty scheme, promising privateer pentesters they won&#8217;t be prosecuted if they stick to the published script.<\/p>\n<p>The MoD has joined forces with bug bounty platform HackerOne, with the scheme seemingly being aimed at those who probe external web-facing parts of the ministry&#8217;s sprawling digital estate.<\/p>\n<p>New <a target=\"_blank\" href=\"https:\/\/www.gov.uk\/guidance\/report-a-vulnerability-on-an-mod-system\" rel=\"noopener noreferrer\">guidance<\/a> published on the GOV.UK pages for the MoD exhorts bug-hunters to submit only &#8220;benign, non-destructive, proof of concepts&#8221;.<\/p>\n<p>&#8220;The MOD affirms that it will not seek prosecution of any security researcher who reports any security vulnerability on a MOD service or system, where the researcher has acted in good faith and in accordance with this disclosure policy,&#8221; it stated.<\/p>\n<p>Lest anyone gets the idea that running Nessus across MoD websites is going to lead to a bumper payday, the guidance also says that reporting folk should not &#8220;use high-intensity invasive or destructive scanning tools to find vulnerabilities.&#8221; Phishing MoD staff is also out of bounds.<\/p>\n<p>Oddly enough, the ministry is explicitly uninterested in hearing about &#8220;TLS configuration weaknesses&#8221;, including the &#8220;presence of TLS1.0 support&#8221; or &#8220;weak cipher suite support&#8221;. Microsoft, among many others, recommends <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/docs.microsoft.com\/en-us\/security\/engineering\/solving-tls1-problem\">killing off TLS1.0<\/a> in favour of version 1.2, though the MoD runs a <a target=\"_blank\" href=\"https:\/\/www.theregister.com\/2018\/11\/09\/royal_navy_old_os_at_sea\/\" rel=\"noopener noreferrer\">large number of legacy systems<\/a> only capable of using legacy protocols.<\/p>\n<p>The MoD is rather far behind its governmental peers, with France having <a target=\"_blank\" href=\"https:\/\/www.theregister.com\/2019\/01\/22\/france_cyber_war\/\" rel=\"noopener noreferrer\">devised a similar scheme called YesWeHack last year<\/a>. <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.theregister.com\/2018\/07\/11\/hackerone_bug_bounty_sitrep\/\">Singapore and<\/a> <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.afcea.org\/content\/Blog-defense-department-launches-hack-army-bug-bounty-program\">America<\/a>&#8216;s defence ministries, meanwhile, have been running bug bounties for years.<\/p>\n<p>Jake Moore of infosec biz Eset mused to <i>El Reg<\/i>: &#8220;Bug bounties are an essential way of testing security and can save organisations a huge financial strain in the long run. Having an internal department constantly test the security of an organisation is of course a necessity but bounties allow it so the whole technology community can effectively become your distributed dedicated full time CISO, offering better protection.&#8221;<\/p>\n<p>&#8220;To my surprise,&#8221; he continued, echoing <i>El Reg<\/i>&#8216;s feelings, &#8220;I previously would have assumed the MOD would already have had a vulnerability disclosure policy in place as such schemes are vital in modern day threat hunting. However, better late than never, even if it does mean they had to swallow their pride and offer it out.&#8221;<\/p>\n<p>Neither Microsoft nor HackerOne responded to <i>The Register<\/i>&#8216;s invitations to comment. Hopefully they&#8217;ll be a bit more forthcoming when actual white hats start tinkering and testing. \u00ae<\/p>\n<p> READ MORE <a href=\"https:\/\/go.theregister.com\/feed\/www.theregister.com\/2020\/12\/10\/uk_mod_bug_bounty\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8216;Better late than never&#8217; opines industry bod The UK&#8217;s Ministry of Defence has launched a bug bounty scheme, promising privateer pentesters they won&#8217;t be prosecuted if they stick to the published script.\u2026 READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":38928,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[63],"tags":[],"class_list":["post-38927","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-register"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.6 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>UK Ministry of Defence: We won&#039;t prosecute bug bounty hunters \u2013 oh btw, we now have one of those 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"UK Ministry of Defence: We won&#039;t prosecute bug bounty hunters \u2013 oh btw, we now have one of those 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2020-12-10T10:28:11+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/12\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1000\" \/>\n\t<meta property=\"og:image:height\" content=\"750\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"UK Ministry of Defence: We won&#8217;t prosecute bug bounty hunters \u2013 oh btw, we now have one of those\",\"datePublished\":\"2020-12-10T10:28:11+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\\\/\"},\"wordCount\":426,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/12\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those.jpg\",\"articleSection\":[\"The Register\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\\\/\",\"name\":\"UK Ministry of Defence: We won't prosecute bug bounty hunters \u2013 oh btw, we now have one of those 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/12\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those.jpg\",\"datePublished\":\"2020-12-10T10:28:11+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/12\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/12\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those.jpg\",\"width\":1000,\"height\":750},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"UK Ministry of Defence: We won&#8217;t prosecute bug bounty hunters \u2013 oh btw, we now have one of those\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"UK Ministry of Defence: We won't prosecute bug bounty hunters \u2013 oh btw, we now have one of those 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/","og_locale":"en_US","og_type":"article","og_title":"UK Ministry of Defence: We won't prosecute bug bounty hunters \u2013 oh btw, we now have one of those 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2020-12-10T10:28:11+00:00","og_image":[{"width":1000,"height":750,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/12\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"UK Ministry of Defence: We won&#8217;t prosecute bug bounty hunters \u2013 oh btw, we now have one of those","datePublished":"2020-12-10T10:28:11+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/"},"wordCount":426,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/12\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those.jpg","articleSection":["The Register"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/","url":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/","name":"UK Ministry of Defence: We won't prosecute bug bounty hunters \u2013 oh btw, we now have one of those 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/12\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those.jpg","datePublished":"2020-12-10T10:28:11+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/12\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/12\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those.jpg","width":1000,"height":750},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/uk-ministry-of-defence-we-wont-prosecute-bug-bounty-hunters-oh-btw-we-now-have-one-of-those\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"UK Ministry of Defence: We won&#8217;t prosecute bug bounty hunters \u2013 oh btw, we now have one of those"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/38927","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=38927"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/38927\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/38928"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=38927"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=38927"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=38927"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}