A pair of hackers discovered a vulnerability in Air Force software that allowed them to gain access to the US Department of Defence's unclassified network - a find that earned them more than $US10,000, the largest payout ever in a US government bug bounty program.