A bug bounty program aims to provide greater cybersecurity in a world connected by 5G (Image: Pixabay)

Many companies are currently digitizing their production, resulting in exponential growth of networked devices and many new IoT applications. As a result, network providers are trying to strengthen existing protections to best minimize potential security vulnerabilities. Therefore, China’s ZTE Corporation, in cooperation with the company YesWeHack, launched a comprehensive bug bounty program.

In addition to many advantages of networking, users also fear downsides: More network participants lead to an increasingly broad attack surface for unauthorized access to millions of diverse devices. Network providers are now faced with the responsibility of initiating appropriate protective measures. As a result of these developments, ZTE Corporation, a global telecommunications provider headquartered in Shenzen, China, wants to take preventive action to ensure greater cybersecurity.

Working together for more security

As part of a bug bounty program, ZTE commissioned the YesWeHack community of over 30,000 ethical hackers to put their systems through their paces. Up to $2,000 is promised to professional bug hunters for finding each critical security gap. Various product categories such as 5G core network, 5G NR, fixed network, multimedia, cloud video, cloud computing, database management systems and terminal products will be reviewed.

Transparency as corporate image

The company hopes to improve cybersecurity by creating an end-to-end security mechanism for all stages of the product lifecycle, and it is placing great emphasis on public awareness. “Through openness and transparency, we are trying to build even more trust with our customers by disclosing what we do and how we ensure end-to-end security,” said Zhong Hong, ZTE’s chief security officer. It remains to be anticipated whether actions like these can actually provide sufficient security in a future permeated by 5G, or are merely publicity stunts designed to increase public trust in network providers like ZTE.