High- and critical-severity vulnerability reports account for 68% of government bug bounty spend. But that’s just one part of the story. Valid vulnerabilities reported to government organizations have decreased by 30% over the past year, but high- and critical-severity vulnerabilities have risen by 6%. Find out what’s driving these trends—and how the most resilient government agencies are staying ahead.
This Government Edition of the Hacker-Powered Security Report dives into:
- 3 factors that set top-performing security programs apart
- How the U.S. Department of Defense’s crowdsourced security program has resolved over 50,000 vulnerabilities while saving taxpayers $61 million
- Why cross-site scripting (XSS) accounts for 40% of government vulnerability reports—double the cross-industry average
- The impact of competitive payouts on driving high-severity findings
- Targeted recommendations to improve government security programs in 2025
