Jason Haddix

Father, hacker, Head of Trust and Security at Bugcrowd, blogger, & nerd.
Recent Posts
Security Advisory: Cloudbleed

Yesterday a vulnerability in Cloudflare CDN and DDoS prevention service was disclosed by Google’s Project Zero. The blog post stated that an HTML parser for specific Cloudflare features was vulnerable to leaking sensitive information of other Cloudflare customers.

By Bugcrowd News
Product Security Challenges and Opportunities: Insights from Adobe’s VP and CSO, Brad Arkin

Last week we launched our 2017 CISO Investment Blueprint which analyzes survey responses from 100 security decision makers regarding the current state of application security. In addition to the survey results, we’ve chatted with several innovators in the security industry to get their thoughts on appsec today and the future. Over the next couple of weeks, we’ll

By Company ResourcesCybersecurity News
Insights From AppSec Veteran, Richard Rushing

Last week we launched our 2017 CISO Investment Blueprint which analyzes survey responses from 100 security decision makers regarding the current state of application security. In addition to the survey results, we’ve chatted with several innovators in the security industry to get their thoughts on appsec today and the future. Over the next couple of

By Conferences & Events
CISO Q&A: Kim Green

This week we launched our 2017 CISO Investment Blueprint which analyzes survey responses from 100 security decision makers regarding the current state of application security. In addition to the survey results, we’ve chatted with several innovators in the security industry to get their thoughts on appsec today and the future. Over the next couple of months,

By Company ResourcesCybersecurity News
New Industry Report: 2017 CISO Investment Blueprint

What are CISOs concerned about in application security for 2017? What are their spending and resource allocation priorities? What does the modern-day appsec landscape look like? At the end of 2016 we surveyed some security industry leaders to get their thoughts on the current state of application security and what is to come for appsec

By Company Resources