It didn’t take Jordan Wiens very long to find a vulnerability in United Airlines’ network, but the payoff was one million free air miles for about six hours of work.
A vulnerability researcher from Florida, Wiens was the first recipient of United’s highest-level reward in its bug bounty program, reserved for remote code execution (RCE) vulnerabilities in its web properties.
United announced the bounty program in May 2015, which it said is the first such program in the airline industry.
