Artificial intelligence and ethical hackers stress-test the DOT-Chain military supply IT system

Over 20 independent researchers, together with artificial intelligence algorithms, tested the DOT-Chain Defence weapons marketplace for vulnerabilities during a BugBash session at the Kyiv International Cyber Resilience Forum.

To ensure the highest level of security for defense procurement, the Defence Procurement Agency DOT engaged Ukraine’s cyber community in testing. The BugBash format enabled the simulation of real-world cyberattack scenarios in a controlled environment. The event’s key technological highlight was final system testing powered by artificial intelligence, which will continue after the two-day hackathon concludes.

Key findings of the security test

• Data security: testing was conducted in an isolated environment with no access to real data.
• Methodology: participants were awarded points for each bug or vulnerability found, competing to be recognized as the most effective bug hunter.
• Result: only minor vulnerabilities were identified, and they have already been passed to the DOT development team for prompt remediation.

The event was held under the auspices of the National Security and Defense Council of Ukraine and with strong international support from the U.S. Department of State, the Government of Canada, and CRDF Global. The technology platform for bug hunting was provided by BugStream in partnership with Cyber Unit Technologies.

This approach reflects Ukrainian defense technologies’ transition toward global standards — moving from closed internal checks to open audits by the professional community and the adoption of advanced IT tools.