Today we are excited to announce the latest disclosure channel available through Bugcrowd’s Vulnerability Disclosure Program (VDP) – Email Intake. It’s simple – any third party who wants to report a vulnerability can simply send an email to your organization via a security@ email address, and Crowdcontrol takes care of the rest. This feature expands
We are excited to announce that organizations can now increase the visibility into their program with known issue sharing. Sharing known issues will disclose categories of vulnerabilities, based on Bugcrowd’s Vulnerability Rating Taxonomy (VRT), that have been discovered on a specific target to better direct a researcher’s testing efforts towards low-touch targets and less commonly
Bugcrowd has done it again! Today we announced an innovative enhancement to Crowdcontrol–introducing Traffic Control, a proprietary feature built to deliver a solution for secure crowdsourced security testing. Crowdsourced security testing has proven to be a cost-effective solution for uncovering security risks for organizations–augmenting their SDL by addressing the shortage of security resources in the industry. Yet with
We are excited to introduce new submission search and filtering capabilities to Crowdcontrol, built to optimize the time you spend finding submissions. Over the last three years, we have seen a steady rise in vulnerability submissions, with a 67% increase in submissions year over year and a 73% increase of valid submissions. What is driving
We are proud to announce the newest Crowdcontrol update, which now maps the open standard Vulnerability Rating Taxonomy (VRT) to the Common Vulnerability Scoring System (CVSS) v3, allowing organizations to manage submission severity with CVSS v3!
In talking with our customers, and particularly larger customers, we often hear of the need to establish an open, public, and passive channel for vulnerability disclosure from their users, customers, and the broader security community. These customers aren’t always ready for a public bug bounty but they may already have an existing security@ email address.
The release of our newest integration with Slack now allows you to receive actionable bounty notifications immediately! Organizations continue to transition to an agile software development lifecycle in today’s fast paced market where there is an increased need for developing applications quickly, efficiently, and securely. Our platform, Crowdcontrol, enables companies to seamlessly implement bug bounty
Bugcrowd is excited to announce our June 2017 Hall of Fame winners! At the top, mongo is in our first place spot again :), with Web_Plus following closely behind in second and ahmedehane rounding out our top three! To thank our top performers for their hard work, Bugcrowd is pleased to announce that all three researchers have
Our 2017 Spring Product Release improves vulnerability management for the enterprise and supports the long-term success of both security teams and researchers.