By Michael Skelton Jul 21, 2021The Shocking Truth You May Not Know About Being A Full-Time Bug Hunter For a lot of people, bug bounties present a way to escape the rat race. A way to exchange the handcuffs of employment for the freedom of autonomous control of one's day, and one's financial future. As appealing as that… Read More
By Casey Ellis Jul 7, 2021The Kaseya/REvil Attack Explained Why it Matters and How to Protect Yourself What Happened? At around 1400 EDT on July 2, attackers appear to have used a 0-day authentication bypass vulnerability in Internet-exposed instances of the Kaseya Virtual System Administrator (VSA) server software, a… Read More
By Erica Azad Jun 17, 2021Three Common Ways Organizations Get Hacked When it comes to security teams, one of the biggest priorities is reducing risk. A big part of reducing risk is creating a cybersecurity risk management strategy. As the world becomes more reliant on digital technology, risk management is becoming… Read More
By Andy White May 27, 2021How Bugcrowd sees Vulnerability Disclosure Programs and Points Starting June 1st at 17:00 Pacific Time (UTC-7), points on VDPs will be disabled. If you have already obtained points on VDPs, they will not disappear. Vulnerability Disclosure: It’s very important A vulnerability disclosure policy sets the rules of engagement… Read More
By Erica Azad May 26, 2021Vulnerability Disclosure Programs: Luxury or Necessity? Many organizations recognize the value and benefits of a Vulnerability Disclosure Program (VDP). But what are some of the consequences of not having a VDP? This infographic explores this question and examines if VDPs are a necessity or a luxury.… Read More
By Bugcrowd Product Marketing May 20, 2021Infographic: What are Vulnerabilities? Vulnerabilities are components of code that can be exploited to negatively impact the security of data, systems, people, or IP. According to ISO/IEC 29147:2018, a vulnerability is, "a behavior or set of conditions present in a system, product, component, or… Read More
By Bugcrowd May 12, 2021Vulnerability Disclosure Policy: What is It & Why is it Important? A vulnerability disclosure policy sets the rules of engagement for an ethical hacker to identify and submit information on security vulnerabilities. Vulnerability disclosure policies establish the communications framework for the report of discovered security weaknesses and vulnerabilities. This enables all… Read More
By Erica Azad Apr 21, 2021Attack Surface Management 101: An Essential Guide What is an Attack Surface? Imagine you live in a house with two doors and five windows. Each night, you check each door and window to make sure it is locked. But what if there was a hidden sixth window,… Read More
By Bugcrowd Feb 16, 2021Complete Guide to Pentesting Penetration testing is a key cybersecurity best practice. Most organizations understand the need for it, but like many things in the industry, penetration testing can be a bit confusing. This blog covers penetration testing 101, helping to uncover the basics,… Read More
By Bugcrowd Product Marketing Feb 5, 2021Benefits of Penetration Testing Penetration testing (or pentesting) is a critical part of maintaining and fortifying your IP, network, and physical security. It involves giving professional pen testers permission to hack, test, and identify potential vulnerabilities in existing and new systems, networks, and apps,… Read More
