Puru Gupta, a cybersecurity researcher and hacker, and a student at Doon Business School, Dehradun, has been recognized by NASA for identifying and responsibly reporting significant security vulnerabilities in the agency’s systems. His efforts earned him an official Letter of Appreciation, highlighting the vital role that ethical hackers play in strengthening global cybersecurity.
The Discovery and NASA’s Recognition
Operating under his bug-hunting alias, Puru Gupta successfully detected critical flaws in NASA's infrastructure. He reported the vulnerabilities through NASA's Vulnerability Disclosure Program (VDP), adhering to ethical hacking standards. His timely disclosure enabled NASA to patch the security loopholes, preventing potential exploitation.
In acknowledgment of his contribution, Mike Witt, Senior Agency Information Security Officer at NASA’s Office of the Chief Information Officer (OCIO), sent an official Letter of Appreciation praising Puru’s skills and responsible reporting.
NASA’s Letter of Appreciation
"Dear Puru Gupta,
On behalf of the National Aeronautics and Space Administration and NASA's Vulnerability Disclosure Policy (VDP), we would like to recognize your efforts as an independent security researcher, both in identifying the vulnerability you submitted and for following NASA's VDP policy and guidelines in responsibly reporting this to us.The ability to detect and report on security vulnerabilities is a valuable skill in the information security industry. Your reporting has facilitated NASA's awareness of otherwise unknown vulnerabilities and helped us protect the integrity and availability of NASA information.
Please accept this letter as a token of our appreciation for your efforts in detecting this vulnerability, and better enabling NASA to continue its advances in science, technology, aeronautics, and space exploration to enhance knowledge, education, innovation, economic vitality, and stewardship of the Earth. We are all in this together as a security community and your participation and expertise are commended.
Sincerely,
Mike Witt
Senior Agency Information Security Officer (SAISO)
NASA Office of Chief Information Officer (OCIO)
NASA Vulnerability Disclosure Policy (VDP)
A Remarkable Achievement
Sharing this milestone on LinkedIn, Puru expressed his gratitude, writing:
"Receiving a Letter of Appreciation from NASA is truly a milestone moment in my cybersecurity journey.
Never did I imagine that my bug bounty hunting efforts would lead to recognition from one of the world’s most prestigious space agencies. This acknowledgment is a testament to the power of ethical hacking and its role in enhancing global security."
Future Prospects and Contributions
As a student at Doon Business School, Dehradun, Puru Gupta is rapidly emerging as a talented cybersecurity researcher. His dedication to responsible vulnerability disclosure and technical expertise reflect the growing impact of young ethical hackers in strengthening global digital security.
Puru's achievement is not only a personal milestone but also a source of inspiration for aspiring cybersecurity professionals, showcasing how skill, dedication, and responsible hacking practices can contribute to safeguarding some of the world’s most critical organizations.
Strengthening Global Cybersecurity
NASA's recognition not only showcases Puru Gupta’s exceptional talent but also highlights the increasing collaboration between cybersecurity researchers, hackers, and major organizations. His contribution serves as a testament to the significance of ethical hacking in fortifying global digital defense.
