By Bugcrowd May 12, 2021Vulnerability Disclosure Policy: What is It & Why is it Important? A vulnerability disclosure policy sets the rules of engagement for an ethical hacker to identify and submit information on security vulnerabilities. Vulnerability disclosure policies establish the communications framework for the report of discovered security weaknesses and vulnerabilities. This enables all… Read More
By Grant McCracken May 4, 2021Why Isn’t My Program Getting Submissions? Pt. Two Welcome back! If you haven’t already read the last blog on this topic, we set up a solid base that we’ll continue to expand upon here. To recap our past conversation (while succinct, I do recommend reading the last blog… Read More
By Grant McCracken Apr 27, 2021Why Isn’t My Program Getting Submissions? As crowdsourced cybersecurity programs grow and operate over the course of time, one of the most common effects of ‘program aging’ is a general reduction in the volume of submissions over time. Roughly analogous to the aging of anything (bodies,… Read More
By Andy White Apr 26, 2021Draft Submissions & Autosave No longer will you have to endure losing your submission details due to a connection, browser, or computer failure! With our Draft Submissions and Autosave enhancements to the submission process, your drafted submissions are saved server-side, and can be picked… Read More
By Erica Azad Apr 21, 2021Attack Surface Management 101: An Essential Guide What is an Attack Surface? Imagine you live in a house with two doors and five windows. Each night, you check each door and window to make sure it is locked. But what if there was a hidden sixth window,… Read More
By Michael Hamel Apr 19, 2021The LevelUp CFP is open! Calling all Speakers! Hello friends! Are you interested in speaking at an upcoming LevelUp virtual conference or event? Well, you’re in luck! Our LevelUp CFP is open! You can now submit your talk ideas to our CFP intake form for consideration! Click here… Read More
By Michael Hamel Apr 16, 2021The Ultimate Guide to Bugcrowd Incentive Programs Welcome to the Ultimate Guide to Bugcrowd Incentive Programs! Ever wondered how you can get your hands on some Bugcrowd Swag? Well I’m here to break it all down for you. In fact, we have a number of ways that… Read More
By Luke Stephens Apr 9, 2021How to Succeed in Bug Bounties as a Pentester TL;DR: As a pentester, when I first started bug bounties, it was hard. I had to change my hacking style to start earning decent money. Read on to find out exactly what changed. When I first started bug bounties, I… Read More
By Luke Stephens Apr 2, 2021Is Foundational Knowledge (Networking, Coding, Linux) Really That Important When Learning to Hack? I receive a lot of messages from people who are just starting out on their hacking journey. One of the most common questions that gets asked is "what prerequisite knowledge is required to start learning hacking?". This question comes in… Read More
By Barnett Klane Mar 30, 2021VRT v1.10 Released: Flash downgrades and extended automotive categorization In our tenth release of the Vulnerability Rating Taxonomy (VRT), we’re continuing to meet the goals we prioritized from the start: Collaborate with the community to collect feedback and expertise to drive improvement Maintain a taxonomy that reflects the latest… Read More
