Not just nay, but hell nay!
This is ludicrous! This is another major indictment of our failing government and particularly our current legislature. I find this incredibly incompetent and very distressing. Were this not part of a larger pattern, I would think they were insane, but no, just incredibly incompetent and corrupt.
I fully agree with the remarks by “Katie Moussouris, A BUG BOUNTY EXPERT and founder of Luta Security”:
“Congress “should be funding an overhaul of internal capabilities” (my exact immediate reaction when I read this bill)
Bug bounties should only be used in circumstances where you’ve done your best to find and fix issues yourself, not as a replacement for due diligence and process, and not as a replacement for professional penetration testing.”
Considering all the things we waste time and money on, ESPECIALLY NON-GOVERNMENT ISSUES, to fail to address the root problems of a major, wide-ranging and serious issue with the appropriate dedication of time and priority of government resources is a disturbing abdication of their primary responsibilities, even considering their greater precedent and abject failure to address the looming economic catastrophe of Social Security, Medicare and Medicaid.
We have witnessed a disturbing trend in both government and the private sector of waiting until a major hack occurs before addressing cybersecurity. Congress pretends to great protest and anger when the private sector does this. Not only do they then fail to do anything of significance, but they then pretend ignorance and anger when our own government exceeds the private sector in the depth and breadth of its data breaches, assuming we are even aware of all the government data breaches.