[vc_row css=”.vc_custom_1494667726640{margin-bottom: 38px !important;}”][vc_column width=”1/2″ shadow_x_offset=”0″ shadow_y_offset=”0″ shadow_blur=”0″ shadow_spread=”0″ shadow_color=””][vc_row_inner el_class=”company-video-margin-right” css=”.vc_custom_1593811275590{margin-top: 23px !important;margin-bottom: 40px !important;margin-left: 23px !important;border-top-width: 23px !important;border-right-width: 23px !important;border-bottom-width: 23px !important;border-left-width: 23px !important;border-left-color: #cececf !important;border-left-style: none !important;border-right-color: #cececf !important;border-right-style: none !important;border-top-color: #cececf !important;border-top-style: none !important;border-bottom-color: #cececf !important;border-bottom-style: none !important;}”][vc_column_inner shadow_x_offset=”0″ shadow_y_offset=”0″ shadow_blur=”0″ shadow_spread=”0″ shadow_color=”” css=”.vc_custom_1519301717757{margin-top: 0px !important;margin-right: 0px !important;margin-left: 0px !important;padding-top: 0px !important;padding-right: 0px !important;padding-bottom: 0px !important;padding-left: 0px !important;}”][vc_single_image image=”3949″ img_size=”full” alignment=”center”][/vc_column_inner][/vc_row_inner][/vc_column][vc_column width=”1/2″ shadow_x_offset=”0″ shadow_y_offset=”0″ shadow_blur=”0″ shadow_spread=”0″ shadow_color=”” css=”.vc_custom_1519300570950{margin-bottom: 30px !important;}”][vc_custom_heading text=”Pushing for Responsible Disclosure” font_container=”tag:h2|font_size:34|text_align:left|line_height:40px” use_theme_fonts=”yes” css=”.vc_custom_1580512238325{margin-bottom: 54px !important;}”][vc_column_text]Founded in 2020, Whitehat Nigeria is composed of Nigeria Security Researchers whose motivation are patrotism, professionalism, and profit making which intend to help reposition the cybersecurity posture of Nigeria by engaging in an open security research of the Nation’s cyberspace and report all sensitive findings to affected organizations. With the hope of forcing all organizations to adopt Vulnerability Disclosure Policy (VDP) which will help ensure that the available attack surfaces for the adversary are being totally reduce. On the believe that until VDP adoption increases, vulnerabilities will continue to remain unreported, and breaches will continue at an accelerated rate, pushing for a managed disclosure situation which is preferable to one without control.

For our continuos operation, we are going to be relying largely on the cooperation of all organizations in all sectors be it public and private to join hands and collaborate with us on the great initiatives.  Support from member of the general public will be appreciated as we embark on this journey.

We encourage organizations with digital assets to reach out to Whitehat Nigeria to discuss how they can get their VDP developed to encourage more vulnerability to be reported as nearly 1 in 4 hackers have not reported a discovered vulnerability because the company didn’t have a channel to disclose it, according to  2018 Hacker Report from Hacker One.

VDPs are intended to remedy that situation by giving finders clear directions on how to report a potential vulnerability, and giving your internal security team an easy means with which to receive such reports. It also helps eliminate the potential business chaos should someone not know how to report a vulnerability and it winds up on social media.

The role of regulators such as NITDA and professional associations like CSEAN and NAIJASECFORCE is paramount for the success of this project.  Let us join hands together to push for a responsible disclosure in Nigeria.[/vc_column_text][/vc_column][/vc_row][vc_row shadow_x_offset=”0″ shadow_y_offset=”0″ shadow_blur=”0″ shadow_spread=”0″ shadow_color=”” css=”.vc_custom_1580587989600{margin-bottom: 53px !important;}”][vc_column width=”1/2″ shadow_x_offset=”0″ shadow_y_offset=”0″ shadow_blur=”0″ shadow_spread=”0″ shadow_color=”” css=”.vc_custom_1580588533864{margin-bottom: 30px !important;padding-right: 30px !important;background-color: #32a030 !important;}”][vc_custom_heading text=”Our Interest” font_container=”tag:h4|font_size:26|text_align:left|color:%23ffffff|line_height:35px” use_theme_fonts=”yes” css=”.vc_custom_1580510478835{margin-bottom: 0px !important;}”][vc_column_text]We constantly scrape the web in search of vulnerabilities that might exist on Nigeria’s ICT assets and report findings to the bodies affected and we offer solutions to the issues we discover. Our remediation services are subject to agreements that we might have with the affected entity.[/vc_column_text][/vc_column][vc_column width=”1/2″ shadow_x_offset=”0″ shadow_y_offset=”0″ shadow_blur=”0″ shadow_spread=”0″ shadow_color=”” css=”.vc_custom_1580588563621{background-color: #000000 !important;}”][stm_spacer height=”75″ height_tablet=”30″ height_mobile=”25″ height_tablet_landscape=”0″][vc_custom_heading text=”We are true to ourselves, and commit to always perform at our best.” font_container=”tag:h4|font_size:22|text_align:left|color:%23ffffff|line_height:35px” use_theme_fonts=”yes” uppercase=”true” css=”.vc_custom_1580589519929{margin-bottom: 0px !important;}”][stm_spacer height=”75″ height_tablet=”30″ height_mobile=”25″ height_tablet_landscape=”0″][/vc_column][/vc_row][vc_row equal_height=”yes”][vc_column width=”2/3″ css=”.vc_custom_1493295440318{margin-bottom: 30px !important;}”][vc_custom_heading text=”Frequently asked questions” font_container=”tag:h4|font_size:26|text_align:left|line_height:35px” use_theme_fonts=”yes” css=”.vc_custom_1519293474931{margin-top: -7px !important;margin-bottom: 48px !important;}”][vc_tta_accordion c_icon=”triangle” active_section=”1″ ac_style=”style_2″][vc_tta_section title=”What are the critical elements of VULNERABILITY DISCLOSURE POLICY?” tab_id=”1493293487425-2092e5a5-cbc1″][vc_column_text]There are just five key elements of a VDP as listed below;

[/vc_column_text][/vc_tta_section][vc_tta_section title=”How would a VDP have helped in the case of Surebet247?” tab_id=”1493293537066-c50ab8fb-1e6f”][vc_column_text]The Surebet247 breach which opened the year would not have escalated so bad over the media if they had put in place a good breach and vulnerability disclosure policy. Like Surebet247, there are many other organizations in Nigeria that are also in the same shoes with them, some open security researcher  have some of this information already which may be readily available to the adversary as well but they are finding it difficult to report those information to affected organization because there is no explicit guidance on how to go about.[/vc_column_text][/vc_tta_section][vc_tta_section title=”How can one join the Whitehat Nigeria Team?” tab_id=”1493293536404-6bf98bd8-607f”][vc_column_text]If you trust your abilities in the technical engagement we have highlighted and you are ready to be part of the Whitehat.NG Campaign.

Kindly send your CV to info@whitehat.ng.

And we will get back to you within 3 days.[/vc_column_text][/vc_tta_section][vc_tta_section title=”What could cause Restrictions on Disclosure?” tab_id=”1493293535707-9add18a4-46a2″][vc_column_text]Researchers do not create vulnerabilities. The fact that one researcher does not disclose its existence does not guarantee that another will not find it – or has not already found it. Finders may have reasons to want to disclose the vulnerability publicly.[/vc_column_text][/vc_tta_section][/vc_tta_accordion][/vc_column][vc_column width=”1/3″ css=”.vc_custom_1493295137464{padding-right: 30px !important;padding-left: 30px !important;}”][vc_row_inner][vc_column_inner shadow_x_offset=”0″ shadow_y_offset=”0″ shadow_blur=”0″ shadow_spread=”0″ shadow_color=”” css=”.vc_custom_1580513178084{padding-top: 101px !important;padding-bottom: 62px !important;background-image: url(https://www.whitehat.ng/wp-content/uploads/2020/01/whitehat-banner-e1580458176731.jpg?id=3947) !important;background-position: center !important;background-repeat: no-repeat !important;background-size: cover !important;}”][stm_icon icon_align=”center” height=”96″ icon=”stmicon-notebook_b” css=”.vc_custom_1519358258790{margin-bottom: 32px !important;}”][vc_custom_heading text=”If you see something, say something BUT Responsibly.” font_container=”tag:h4|font_size:26|text_align:center|color:%23222222|line_height:35px” use_theme_fonts=”yes” css=”.vc_custom_1580513357987{margin-bottom: 38px !important;padding-right: 30px !important;padding-left: 30px !important;}”][/vc_column_inner][/vc_row_inner][/vc_column][/vc_row]