By Justin Kestelyn Apr 27, 2022Fight the Fear of Shadow and Zombie APIs One of Gartner’s 2022 security predictions is focused on the adoption and growth of APIs, which will require improvements in management and security. There were some interesting planning assumptions in this research note about the challenges organizations will increasingly face in… Read More
By Justin Kestelyn Mar 24, 2022Defining Cybersecurity Team Colors (and How Bugcrowd Fits In) Originally invented for wargaming, the “oppositional teams” concept was widely adopted by the cybersecurity industry decades ago. Today, Blue Teams and Red Teams are standard concepts in security simulations and testing, especially in large companies–and more recently, we’ve seen the… Read More
By Justin Kestelyn Feb 15, 2022Investing in Customer Success: Announcing Faster, More Agile Penetration Testing and More In a world where threats are unpredictable and organizations are constantly under siege–and where no amount of automation can replicate the attacker mindset or human ingenuity at scale–Bugcrowd gives customers a proactive, first line of defense against being blindsided by… Read More
By Justin Kestelyn Jan 6, 2022Bugcrowd’s Log4j Response: Behind the Numbers The historic Log4j RCE vulnerability was discovered on approximately Dec. 9, 2021, and many security teams continue to grapple with it. It’s another reminder (as if we needed one) that cybersecurity is a team sport that requires intense, continuous collaboration… Read More
By Justin Kestelyn Dec 20, 2021Avoiding “Blindside” Cloud Security Attacks If the last 18 months have taught us anything about cybersecurity, it’s that moving work environments and software supply chains to the cloud has attackers proverbially gunning their engines. Attack vectors like ransomware and N-day attacks are causing security leaders… Read More
