Last week, Google announced a bug bounty reward of $1 million to anyone who could carry out a full chain remote code execution exploit on the Titan M secure chip within Pixel devices (this comes shortly after Apple launched its…
One of the key challenges facing any growing organization is maintaining oversight over all assets connected to the business, wherever they lay. As an organization’s digital footprint expands, so too does their attack surface, making a comprehensive risk-based security strategy…
At Bugcrowd, we’re committed to making the digitally-connected world a safer place. And we couldn’t do so without the creativity and skills of our Crowd. So with October and National Cybersecurity Awareness Month (NCSAM) wrapping up, we wanted to share…
November is right around the corner, and so is the holiday shopping season. As consumers prepare to loosen their wallets, retailers are preparing to tighten their security. For many, this means restricting code changes to mission critical systems so that…
This post was originally authored by Joel Witts for Experts Insights. Expert Insights speaks to David Baker, Chief Security Officer and VP of Operations at Bugcrowd, about their crowdsourcing approach to application security, and his tips for security success. Penetration…
Hacker Summer Camp 2019 was one for the books for team Bugcrowd. With some of the world’s best hackers, major tech companies, and government agencies converging, Bugcrowd had a bird’s eye view to observe some major happenings in the world…
Bugcrowd has reported on the state of bug bounties since 2015, analyzing data from vulnerabilities submitted through the Crowdcontrol platform and on the Crowd itself. This year, we introduced the inaugural 2019 Priority One Report, expanding the scope of our…
This guest blog is authored by Matt Hillary, Vice President of Security at Instructure and originally appeared on the Instructure blog. Every year, the Instructure security team attends DefCon to learn together with the greater security community about ways we…
In a consumer climate that increasingly values security as a buying necessity, Bugcrowd is making it easier than ever to achieve and demonstrate commitment to security best practices. Assess your organization’s security posture against your own internal metrics, industry peers,…
According to analyst firm Enterprise Strategy Group, 74% of cybersecurity professionals say their organization has been impacted by the global cybersecurity skills shortage. Cybersecurity professionals today have a lot on their plate, with increasing pressures around new IT initiatives, data…
