The results are in, and they’re major
This past October, we at Bugcrowd launched the latest iteration of our annual virtual collaboration challenge: Hacker Showdown. Accepted hackers were challenged to find and submit as many valid, non-duplicate vulnerabilities of moderate-to-high impact (P1–P3) as they could in teams of three.
Eight teams showed off their collaborative prowess, ingenuity, and commitment to securing our digital world by identifying weaknesses in customers’ security.
Not only were all Bugcrowd public programs fair game during the competition, but over 65 private customers joined in. In total, the event saw over 300 hackers compete, an excess of $750k in payout rewards, nine trophies won, a $30k grand prize, a mountain of swag giveaways, and no shortage of bragging rights earned among the community.
One team came out on top: “Do’s and Don’ts,” made up of sw33tLie, bsysop, and godiego. They combined their unique skill sets, divided up roles, and strategized their way into countless bounties, ultimately winning the grand prize! Give their interview with Katie Paxton-Fear a listen to learn all their team secrets.
Hackers spoke, and we listened
As we reflected on our previous virtual hacking events, we couldn’t help but feel honored and delighted to have had so many amazing hackers join us over the years. Those who have been around since the beginning may remember our very first tournament called Team Hunt, which happened four years ago. We were new to the virtual hacking event game, but we saw well over half a million dollars in rewards paid out to hackers.
Somehow, we just concluded our fourth iteration: Hacker Showdown. Including Hacker Showdown, the four tournaments have allowed hackers to make over $4 million by identifying thousands of vulnerabilities. As a result, countless customers have seen huge impacts across their programs. It’s safe to say that Bugcrowd and its customers are beyond grateful for the work that hackers put into these tournaments. The joint commitment of hackers and customers to continue to improve upon crowdsourced security does not go unnoticed.
Additionally, thanks to the numerous surveys that hackers completed and the feedback they provided, Bugcrowd has expanded on the competition regulations. We are able to open up participation to include more qualified hackers. Skill, credentials, and formal backgrounds are still critical criteria for entry. Additionally we continue to raise the bar on qualifying submissions to P1-P3 for the tournament; offering customers the opportunity for more direct impact. Finally, we have increased the reward pool for top winners. Although this was a bigger and better tournament, we maintained Bugcrowd’s quality standard in terms of hacker and customer support.
We plan to keep investing in the Crowd and supporting customers via tournaments to stress test their systems in ways that reward hackers for unleashing their ingenuity via teams and mentorships.
When’s the next competition?
Bugcrowd’s Fifth Hacker Showdown will appropriately launch during National Cyber Security Awareness Month in October. Mark your calendars now, as the first official testing day is September 28th, 2025.
Here’s what you should know:
- Customers can opt in for the next event now. Please reach out to your Bugcrowd representative or account manager.
- Interested in becoming a sponsor? Contact us here.
- Early hacker sign-up is September 1st, 2025
- General hacker criteria:
- No major escalations on the Bugcrowd platform
- Must have submitted at least one vulnerability in 2025
- Must apply with two teammates.
- 2024’s winning team will be offered direct access to Round 2 finals, as is tradition.
Stay tuned for more specific criteria!
Bugcrowd is continually investing in the Crowd and supporting customers in their cybersecurity journeys through engaging challenges, engagement opportunities, and higher rewards. Expect much more in the future.
Any questions, comments, or feedback can be sent directly to community@bugcrowd.com
