Topic: Product Updates
Today, we are excited to announce the availability of our 2017 Winter Product release. This latest release streamlines how organizations manage their bug bounty programs by adding several cutting-edge features to the Crowdcontrol™ platform. These new features promise to simplify integration by allowing information to pass seamlessly between Bugcrowd and customer environments, deliver a complete unified picture of overall security status, and improve the experience for both our customers and our researchers.
Crowdcontrol’s vulnerability management platform now features the capability for customers to add customized fields that improve workflow experience. Customers can add up to five customized fields to a program’s submission form.
Customized fields allow customers to align the bug bounty management process with their application security and development workflows. For example, add a field to assign specific teams to submissions or to help communicate which version of the application the vulnerability affects.
We’re excited to announce today that Crowdcontrol now offers a more streamlined process to sign up for an alternative payout option, Payoneer. We’ve heard many requests from researchers that they’d like an alternative to PayPal, and we’re happy to provide an option for those researchers.
Payoneer provides an alternative means for researchers to receive bounty payments either through a prepaid MasterCard card or a direct bank transfer. Alongside PayPal, Payoneer offers Bugcrowd’s researcher community the opportunity to choose the most convenient method of receiving bounty payments.
Crowdcontrol now offers researchers the ability to follow bounty programs to stay up-to-date on changes made to organizations’ bounty briefs. Now, researchers who are “subscribed” to an organization’s public or private program will be alerted when there is a change in 1) rewards or 2) targets in scope.
Why is this important? With this most recent product feature, ‘Program Updates,’ important bounty brief changes are communicated to researchers on an ongoing basis. This feature will help bolster transparency and encourage long-term loyalty and participation in specific bounty programs. We want to make sure that when changes are made to a bounty brief, researchers who are invested in a program has the insights they need to take appropriate action.
Crowdcontrol’s new ‘Insights’ dashboard provides insightful metrics into your bug bounty program performance. This is just the first step we are taking in bringing you the right metrics to initiate scalable actions and provide meaningful reports for your security team, development team and the people who write the checks.