Ukraine tests military procurement cybersecurity with global ethical hackers
Ukraine's Ministry of Defense has enlisted ethical hackers and artificial intelligence tools to test the cybersecurity resilience of its digital weapons marketplace, DOT-Chain Defence, the ministry's press service announced on February 20.
The initiative was organized by the Defense Procurement Agency (DOT) as part of broader efforts to secure military purchasing systems against cyber threats.
Ukrainian cybersecurity specialists were invited to participate in a large-scale testing event designed to simulate real-world attack scenarios.
The assessment took place in a BugBash format, allowing participants to attempt controlled cyber intrusions while developers monitored system responses in a secure environment.
A key technological component of the exercise was the final testing phase conducted with the assistance of artificial intelligence tools. According to the ministry, AI-driven analysis will continue even after the two-day hackathon concludes, enabling ongoing vulnerability detection.
All testing was carried out on an isolated platform without access to real procurement data. Participants received points for identifying bugs or security weaknesses, competing for recognition as the most effective security researcher.
Officials said several minor vulnerabilities were identified during the exercise and have already been forwarded to DOT developers for rapid fixes.
The event was held under the auspices of Ukraine's National Security and Defense Council and supported internationally by the US State Department, the Government of Canada, and the nonprofit organization CRDF Global.
BugStream provided the vulnerability-testing infrastructure in partnership with Cyber Unit Technologies.
Ukraine's Defense Ministry emphasized that the initiative reflects a broader shift toward global cybersecurity standards in defense technology development. Rather than relying on closed internal inspections, officials said the country is moving toward open auditing processes that involve professional cyber communities and modern IT tools to strengthen resilience against increasingly sophisticated digital threats.
Earlier, Russia carried out a series of cyberattacks targeting Poland's energy infrastructure at the end of December 2025, nearly triggering a nationwide blackout.
