Bugcrowd Blog

In Response to the Department of Commerce's "Green Paper"

Posted by Jonathan Cran on Mar 17, 2017 1:24:02 PM

We recently contributed to the Department of Commerce’s request for public comment on its “Green Paper” with Rapid7, Duo Security, Electronic Frontier Foundation, Center for Democracy & Technology, Global Cyber Alliance and many others that we hope will bolster a more transparent approach to securing the Internet of Things.

Read More
Bugcrowd News

2nd Annual Buggy Awards Finalists Announcements

Posted by Abby Mulligan on Mar 8, 2017 12:35:30 PM

Last week we announced the categories for our 2nd Annual Buggy Awards which will award a select group of individuals and organizations in the bug bounty space. Today we’re pleased to announce the finalists in these categories in anticipation of the awards ceremony next week.

These finalists represent just a handful of organizations and individuals that make this economy so vibrant and we are thankful to the entire bug bounty community. 

Read More
Bugcrowd News

2nd Annual Buggy Awards Announced

Posted by Abby Mulligan on Feb 28, 2017 4:57:54 PM

We are pleased to announce the categories for this year’s Buggy Awards. These awards represent a select group of individuals and organizations who have done fantastic work in the bug bounty space in the past year.

These awards highlight the achievements of top performing customers and researchers and serve as a reminder about what is essential to maintaining the health of the community as a whole.

Read More
Bugcrowd News

Security Advisory: Cloudbleed

Posted by Jason Haddix on Feb 24, 2017 12:16:17 PM

Yesterday a vulnerability in Cloudflare CDN and DDoS prevention service was disclosed by Google's Project Zero. The blog post stated that an HTML parser for specific Cloudflare features was vulnerable to leaking sensitive information of other Cloudflare customers.

Read More
Bugcrowd News

Thick Client Promotion: Congratulations to our January Winner!

Posted by Chloe Brown on Feb 21, 2017 1:14:56 PM

Over the last few months, we've been challenging our crowd to submit bugs against some of our most challenging targets – thick client applications.

Read More
Bugcrowd News

January 2017 Hall of Fame Winners!

Posted by Kaila Pollart on Feb 6, 2017 10:48:55 AM

Bugcrowd is excited to announce our January 2017 Hall of Fame winners! 

Read More
Bugcrowd News

Bugcrowd in 2016: Transparency, Education, and Quality

Posted by Payton O'Neal on Dec 20, 2016 9:03:00 AM

It goes without saying that it has been a HUGE year for appsec. We’ve seen yet another record breaking year of breaches, we had the largest breach in recorded history–Yahoo, and we also witnessed the largest DDoS attack as far as we know at 1.2TB–Mirai. 

Read More
Bugcrowd News

4 Years of Bugcrowd's Bug Bounty: Evolution and Learnings

Posted by Casey Ellis on Nov 21, 2016 3:26:55 PM
Here at Bugcrowd we take our own advice. Four years ago yesterday we launched Bugcrowd's first bounty program to uncover vulnerabilities in our own applications and web assets.
Read More
Bugcrowd News

September & October 2016 Hall of Fame Winners!!

Posted by Kaila Pollart on Nov 7, 2016 11:08:28 AM

Bugcrowd is excited to announce both the September and October 2016 Hall of Fame winners!

Read More
Bugcrowd News

We Called, Our Mobile Researchers Answered!

Posted by Chloe Brown on Oct 25, 2016 10:03:00 AM

Throughout June, July and August 2016, we ran a researcher promotion focused on mobile targets and we are thrilled today to finally be able to announce the winners:

Congratulations to Javidr &  konkakarthik for their winning submissions!

Read More
Bugcrowd News