Request a Demo Contact Us
Bugcrowd Achieves Global CREST Accreditation For Pen Testing
Learn More

Our customers

nab-bank-logo

Crowdsourced security testing provided greater depth to NAB’s security controls

nab-bank-hero-image

Our customers

monash-university-logo

100x increase in actionable intelligence using Bugcrowd VDP

monash-hero-image

National Australia Bank (NAB)

Crowdsourced security testing provided greater depth to NAB’s security controls

Monash University

100x increase in actionable intelligence using Bugcrowd VDP

Case Studies

Customers get results with Bugcrowd

Catawiki

Catawiki found that Bugcrowd stood out as a leader in the crowdsourced and offensive security market. It ultimately chose Bugcrowd because it offers a well-unified bug bounty and pen testing platform—one place to do it all. Catawiki was excited by the prospect of using pen testing results to directly enhance the bug bounty program.
Learn More

Office of the Minnesota Secretary of State

The Minnesota Secretary of State is an executive-branch statewide office serving Minnesotans in the areas of business services, elections and voting, address confidentiality, and other functions of state government.
Learn More

Tango

Tango’s priority was to secure sensitive transaction data for its clients while continuing to innovate. The company is committed to combating threats, bad actors, and security incidents.
Learn More

Rapyd

Rapyd wanted to step up their security posture by making security testing continuous. They have an interesting use case for crowdsourced security, since their core business is so API-focused.
Learn More

BigCommerce

The public bug bounty program has not replaced any internal or external penetration testing schedules or private bug bounties. BigCommerce launched the new public bug bounty program to help evolve the company’s overall security measures.
Learn More

Indeed

More people find jobs on Indeed than anywhere else. Indeed is the #1 job site in the world and allows job seekers to search millions of jobs in more than 60 countries and 28 languages. Over three million employers use Indeed to find and hire new employees. More than 300 million unique visitors each month search for jobs, post resumes, and research companies on Indeed, and Indeed delivers 2.5 times more hires than other branded job sites combined.
Learn More

TX Group

TX Group AG is a media company headquartered in Switzerland. Through a portfolio of daily and weekly newspapers, magazines and digital platforms, as well as own printing facilities, it is the largest media group in the country. Since 2000, Tamedia has been listed on the Swiss Stock Exchange.
Learn More

Monash University

Amidst increased focus on cybersecurity in Australia, Monash has continued its legacy of leading with technology. It is the first university in Australia to implement a Vulnerability Disclosure Program and Bug Bounty Program, leading the way in higher education cybersecurity.
Learn More

Directly

From self-parking cars to smart personal assistants, AI is changing the way we live. All AI systems rely on data as the lifeblood that enables them to learn, but as it's often of a personal or sensitive nature, this data must be secure.
Learn More

NAB

National Australia Bank (NAB) is a financial services institution. We're here to serve customers well and help our communities prosper. Today, we have more than 32,000 colleagues at NAB, serving over eight million customers at more than 900 locations.
Learn More

ExpressVPN

ExpressVPN helps customers stay safe on the internet and keep data shielded from prying eyes by enabling them to browse with a greater degree of anonymity and hide their IP address with best-in-class encryption, unlimited internet access, and ultra-fast VPN servers.
Learn More

Wise

Wise, a global technology company building the best ways to move money worldwide, has adapted its security processes from a once traditional compliance-oriented penetration test to an innovative crowdsourced model.
Learn More

Cloudinary

Cloudinary is a SaaS technology company. The company provides cloud-based image and video management services.
Learn More

Softdocs

Softdocs develops enterprise content management (ECM), e-forms and process automation solutions exclusively for the higher education and K-12 markets.
Learn More

ActiveCampaign

ActiveCampaign is a SaaS marketing technology platform that helps businesses meaningfully connect with customers using solutions designed to support the full engagement lifecycle by enabling Sales, Marketing, and Customer Success teams to create personalized workflows and experiences that drive customer adoption and growth.
Learn More

Code.org

Code.org is a nonprofit dedicated to expanding access to computer science in schools and increasing participation by women and underrepresented minorities.
Learn More

SEEK

SEEK is Australia's number one employment marketplace, bringing together a strong portfolio of online employment, educational, commercial and volunteer businesses.
Learn More

Schoology

Schoology brings together the best K-12 learning management system with assessment management to improve student performance, foster collaboration, and personalize learning.
Learn More

TaxSlayer

TaxSlayer successfully completed more than 10 million state and federal e-filed tax returns in 2018 and processed $12 billion in refunds. TaxSlayer is highest rated for ease of use, speed of filing, best value and most trusted according to the 2017-18 American Online Tax Satisfaction Survey.
Learn More

Kenna Security

Kenna Security is a leader in vulnerability management, serving many Fortune 100 companies and nearly every major vertical. Being a top vulnerability management platform, the security of its own platform is top of mind to protect threat intelligence and customer’s data.
Learn More

Outreach.io

Outreach is a leading sales engagement platform, that automates and prioritizes customer touch points throughout the customer lifecycle, resulting in increased productivity for revenue teams. At Outreach, users’ security is paramount.
Learn More

Motorola

Motorola Mobility is one of the world’s largest consumer electronics and telecommunications companies. It has a robust security program across many departments and applications.
Learn More

HP

Printers, arguably the most common IoT devices on the market, touch and store some of the most sensitive data and yet these devices are often left out of the organization’s security policy. This is why security is a core pillar of HP’s product strategy.
Learn More

InVision

InVision, the award-winning product design collaboration platform, prioritizes product security with a robust approach to vulnerability management. To stay ahead of malicious attackers, InVision has implemented a suite of industry leading security tools and practices such as web application firewalls, regular vulnerability scans, third-party penetration tests and more.
Learn More

Atlassian

For a number of years, Atlassian was running its own incentivized vulnerability reporting program. While very successful, the team was finding that it was too hard to manage the sheer number and varying quality of incoming reports.
Learn More

NETGEAR

In early 2017 NETGEAR®, Inc. launched a public bug bounty program with Bugcrowd to help them stay in front of the latest threats and improve the security of the company's products.
Learn More

Twilio

Twilio, the cloud communications company out of San Francisco, CA, is an early adopter and innovator in the cybersecurity domain. Although they have consistently prioritized Product Security, they wanted to concentrate their efforts on the areas of greatest risk. To help augment their internal and external testing efforts, they turned to the crowd to start uncovering more vulnerabilities and learn from those findings.
Learn More

Okta

Efficiency and effectiveness of the crowd is really why we bring them on… Because we have the crowd involved in the vulnerability management program, it’s helped in expanding of our team for a fraction of the cost. Now my internal resources are better utilized.
Learn More

Fitbit

Fitbit is a great example of an IoT company thinking progressively about product security in a time that this is becoming increasingly important. To learn more about many of the initiatives Fitbit is taking in security testing, how they think about product security, and why they utilize Bugcrowd to assist in their security testing, check out our API Security and the IoT podcast.
Learn More

Fiat Chrysler Automobiles

FCA US has always made the security of their cars a top priority, standardizing and innovating security features since 1924 and, notably, in 1988 being the first automotive company to make airbags standard.
Learn More

Aruba Networks

After evaluating their current testing capabilities and organizational goals, Aruba decided to harness the collective power of human intelligence through Bugcrowd’s more focused Ongoing Private Bug Bounty Program.
Learn More

Instructure

Instructure, from its inception, has proactively published the results of its annual security survey to add full transparency to its security posture.
Learn More

Barracuda Networks

For the Barracuda security team, working closer with the security research community was a great way for them to improve their overall security posture while exhibiting thought leadership.
Learn More

Indeed.com

Indeed - "A Bounty of Security" "'Do what’s best for the job seeker.' This has been Indeed’s guiding principle since the beginning.
Learn More

(ISC)²

(ISC)² has run a public bounty offering Kudos points and potential CPE credits for nearly two years.
Learn More

Western Union

Starting with a private, invite-only bug bounty program, Western Union and Bugcrowd were able to work together to slowly scale the company's bug bounty program over time. They eventually announced the launch of their public bug bounty program on March 11, 2015, becoming one of the first organizations in the financial sector to do so.
Learn More
SUCCESS STORIES

What our customers are saying

Adrian-Ludwig-Atlassian
“It’s a win-win situation—either the Crowd finds something we didn’t see, in which case we can fix it. Or they don’t find anything, which validates our efforts.”
Adrian Ludwig, CISO, Atlassian

Get started with Bugcrowd

Hackers aren’t waiting, so why should you? See how Bugcrowd can quickly improve your security posture.