Skyscanner awards up to $2,000 per vulnerability found on its website, API and mobile apps
SAN FRANCISCO – January 30, 2019 – Bugcrowd, the #1 crowdsourced security company, announced today its customer Skyscanner, the leading global travel search has taken its bug bounty program public. Building on the success of its private program, which has rewarded more than 200 vulnerabilities, Skyscanner’s public program is open to Bugcrowd’s full Crowd of top, trusted whitehat hackers. Skyscanner will award up to $2,000 per vulnerability identified on its website, API and mobile apps.
“Keeping data safe and secure is a top priority and a core company value for us at Skyscanner. We welcome the contribution of external security researchers and look forward to rewarding them for their invaluable contribution to the security of Skyscanner,” said Ante Gulam, CISO, Skyscanner. “We are excited to extend the success of our private bug bounty program, taking this program public to further strengthen our security posture and improve our services.”
With Bugcrowd, customers like Skyscanner are able to find and fix vulnerabilities faster. This is increasingly important given shorter deployment cycles, increased deployment frequency, and faster time to market. Bugcrowd combines the industry’s most robust program management and support, a powerful platform for analytics and automation, and access to top security researchers around the world for up to 10x the results. Today, hundreds of industry-leading, security-conscious organizations including Atlassian, HP, Mastercard and Tesla rely on Bugcrowd to improve their security posture.
“Security is becoming a real market differentiator for companies. Today, consumers are not just considering security when making buying decisions, they’re demanding it,” said Ashish Gupta, CEO of Bugcrowd. “In times of high-profile attacks and breaches in the travel industry, there has never been a more important time to take security seriously. Skyscanner is leading the industry when it comes to security, having run a private crowdsourced security program for the last few years. Taking their program public today further demonstrates that security is an essential and highly-ingrained part of their business as well as their commitment to their customers.”
To learn more about Skyscanner’s program or to participate, visit bugcrowd.com/skyscanner.
Bugcrowd is the #1 crowdsourced security company. More Fortune 500 organizations trust Bugcrowd to manage their bug bounty, vulnerability disclosure, and next gen pen test programs. Bugcrowd’s award-winning platform combines actionable, contextual intelligence with the skill and experience of the world’s most elite hackers to help leading organizations solve security challenges, protect customers, and make the digitally connected world a safer place. Based in San Francisco, Bugcrowd is backed by Blackbird Ventures, Costanoa Ventures, Industry Ventures, Paladin Capital Group, Rally Ventures, Salesforce Ventures and Triangle Peak Partners. Learn more at www.bugcrowd.com.