Hacking is a startup!

Have you found out that hackers are working with big companies and making their money by discovering the loop holes in their products.Why are Nigerians not exploring this? I am researching some big companies’ loop holes already as a researcher to foster ‘customers’ experience. what do you think?

I think good luck to you.

2 Likes
1 Like

Hacking in this context is a subset of Security.

If you’re looking at ‘working with big companies’ then you’d have better luck selling Security is [sic] a startup.

Ever read one of their reports? Most Nigerian hackers do social engineering, not sure if they pay a lot for that.

I don’t know how many Nigerian companies will offer you renumeration if you show them a loophole in their security system. They will simply get their tech guys to close the gap.
Nigerian banks prefer to get stolen from, then use money to kill the news in the press.

4 Likes

What a way to put it. So apt.

Meanwhile, this… for inspiration :smile:

1 Like

I think this is actually a good idea! However like all things, depends on execution.

Generally, there are 2 ways you can approach this: have your hackers in-house and offer it as a service (quite a few Israeli firms do this) or act as a marketplace where other hackers offer their service (HackerOneis a good example - used by Facebook, Coinbase, Slack, GitHub etc).

If you don’t have a stable of good hackers (or you’re not one), then HackerOne route is preferable as the burden suddenly shifts away from you and it’s all transactional in nature.However way you go, you might want to consider these 4 things as well:

  1. It’s always advisable to get consent from the targeted firm. If not, then you’re not providing a service but asking for ransom.

  2. As other people have noted about Nigerian banks, you will need to do a lot of education and awareness to gain traction. I personally think there are cultural issues (not limited to banks) which means an average Nigerian would always say By God’s grace, it’s not my portion, instead of saying I need insurance. Or hacker in this case.

  3. For a firm is in a high risk area (think anyone that stores or handles card details), if they haven’t done the basics, there’s no incentive to invite any hacker. None. I remember reading a press release of a popular payment provider announcing it’s now PCI compliant. This is after being in existence for many years. That’s the equivalent of a pilot telling passengers after a 6hrs flight I was drunk but I was in control. This sort of firm wouldn’t need you.

  4. Finally, everything is global especially security. I mean Amazon (as at today) wouldn’t deliver as fast as Konga can. But an hacker in an Israeli firm or on hackerone will provide instantenous value and service to any bank in Nigeria. One to consider.

BTW @Ayobami_Ogundiran are you still working on your social network? Seems like a lot on your plate.

1 Like

Hacking to me, is best done on your own, exploiting stuffs, regardless of whether you work with a tech company or not.
I once spoke with an Indian last year, he hacked Facebook and got rewarded $12,500 by Facebook Bug Bounty Program, here’s what he had to say about his hacking career => http://www.editweaks.com/2015/02/exclusive-interview-with-laxman-meet.html
BTW Facebook wasn’t the first or only place he successfully hacked, he is still exploiting and hacking Facebook and other systems, and not only him, there are others who do this as a profession, they have a community of hackers, one of which he belongs and right now i think that community is also seen as a start up.
But sad thing is both Whitehats and Blackhats are often seen as BlackHats here in NG. Go hack a Banking system, you’ll likely get arrested and locked up.

Then report your hack to the bank through tor or something. Remain anonymous. The banks don’t have a bug bounty program so you have nothing to gain by exposing yourself. You’re simply trying to be a good Samaritan to the bank, right?

lol, na so, being anonymous is the best identity in such situation

Yes… We just finished it core value and it was the discussion about its security that lead to the idea of “hacking stuff” .we want to launch before jan. runs out. Thanks. It is not that we have a lot in our plate, we are just trying to be flexible.

1 Like