That's what DARPA's learned, as evidenced by their hiring of Peiter 'Mudge' Zatko, who used to run the L0pht hacker space during the '90s.

I'd say this is a smart move by DARPA, especially since Mudge will be working as a program manager for DARPA's cybersecurity division.

I just hope it works out.