Tesla Motors is offering cash prizes of between $25 and $1,000 to anyone who uncovers security issues on its website but not yet available for its vehicles however. Using a security crowdsourcing company called Bugcrowd, researchers have found 22 bugs for Tesla so far.
A statement on the Tesla Bugcrowd page reads in part:
“We are committed to working with this community to verify, reproduce, and respond to legitimate reported vulnerabilities. We encourage the community to participate in our responsible reporting process.”
The security community applauded the step taken by Tesla CEO Elon Musk for exhibiting a willingness to work with benevolent hackers. Though there was already a disorganized bug bounty program, now a more formal process has been chosen.
Anyone who believes they have found a problem in a Tesla vehicle should email vulnerability@teslamotors.com, rather than going to Bugcrowd