skip to Main Content
At Bugcrowd, we’re committed to making the digitally-connected world a safer place. And we couldn’t do so without the creativity and skills of our Crowd. So with October and National Cybersecurity Awareness Month (NCSAM) wrapping up, we wanted to share…
November is right around the corner, and so is the holiday shopping season. As consumers prepare to loosen their wallets, retailers are preparing to tighten their security. For many, this means restricting code changes to mission critical systems so that…
Bugcrowd has reported on the state of bug bounties since 2015, analyzing data from vulnerabilities submitted through the Crowdcontrol platform and on the Crowd itself. This year, we introduced the inaugural 2019 Priority One Report, expanding the scope of our…
The global security threat outlook continues to evolve -- the shift to the cloud, the push to mobile apps, and the adoption of IoT are opening up new attack vectors, causing an explosion of new security vulnerabilities. With major vulnerabilities…
As the healthcare industry continues to move into the digital age, each new technology that provides value to patients, organizations, and caregivers also brings with it unique cybersecurity risks. IT systems, connected medical devices, digital health applications, electronic patient records…
Last week Bugcrowd attended Gartner's annual Security and Risk Management Summit in Washington, D.C. While I know what a city built on a swamp does to your hair, I'm still happy to return every June to catch up with analysts,…
During RSA, Bugcrowd founder and CTO Casey Ellis sat down with CyberScoop’s Greg Otto to discuss the future of work and how bug bounty programs have always been about the evolution of penetration testing. Below are a few highlights. You…
Last week we attended the Financial Services Information Sharing and Analysis Center (FS-ISAC) cybersecurity summit in Orlando, Florida. The event was a first for a few on our team but certainly not for many of the attendees we spoke to,…
Recently ESG and Bugcrowd released a report outlining trends in application security according to security leadership. One of the major trends centered on DevSecOps adoption. According to the report, organizations show strong interest in leveraging DevOps to automate security. Nearly…
Is my stuff secure? At their core, penetration tests answer two critical questions: Is my stuff secure? How do you know? Q1 is pretty straightforward. If the answer is ‘no,’ then Q2 consists of a list of vulnerabilities discovered. But…
