Upwork Takes Bug Bounty Program Public With Bugcrowd

This blog is authored by customer, Teza Mukkavilli, head of information security at Upwork, and first appeared on the Upwork Blog.  Upwork places an extremely high priority on data security. As Upwork’s head of information security, I am constantly thinking about how to keep our site as secure as possible so that our freelancers and clients can

By Guest BlogsSuccess Stories
How strong should your Master Password be? For World Password Day we’d like to know

This blog first appeared on 1Passwords’ blog, and is written by customer Jeffrey Goldberg, Chief Defender Against the Dark Arts at 1Password.  Just how strong should a 1Password Master Password be? We recommend that Master Passwords be generated using our wordlist generator using passwords that are four words long. This gets you something like “napery turnip speed

By Guest BlogsProgram LaunchesProgram Updates
Bugcrowd and Fitbit partner to launch public security bug bounty program

This customer blog originally appeared on Fitbit’s engineering blog, written by Katie Foster, security engineer at Fitbit.  Fitbit has always been committed to protecting consumer privacy and keeping data safe. Our internal security team is constantly testing our products for vulnerabilities as we strive to continuously strengthen our security. And, as our devices become more

By Bugcrowd NewsGuest BlogsProgram LaunchesSuccess Stories
Ethical Security Research on SecureDrop

The SecureDrop engineering team welcomes the contributions of security researchers. SecureDrop is relied on by sources to talk with journalists at dozens of news organizations, many of whom are taking significant risks to bring information to the public eye. We want to do everything we can to make the whistleblowing process as safe for them

By Guest BlogsProgram Updates
Moving Fast with Security

Our driving purpose at Ibotta is to reward our users with cash rebates that make a difference in their lives. They have entrusted their earnings with us, and it’s our responsibility to do our best to safeguard their accounts.

By Guest Blogs
[Guest Blog] EARN CPES WITH BUG BOUNTY

This post original ran on the (ISC)² blog on June 1, 2017: Since 2013, (ISC)² has been a partner of Bugcrowd, running a public bug bounty program and offering CPE credits to our members. Bugcrowd is a leading provider of crowdsourced security and bug bounty programs, connecting organizations with more than 50,000 independent security researchers to identify

By Guest Blogs