Security News

Bugcrowd announced Audiomack, a free music sharing and discovery platform, is launching a public Bug Bounty program to strengthen the security of its internet-connected assets. Audiomack has also operated a Vulnerability Disclosure Program through the Bugcrowd platform over the last year, helping them streamline the process of triaging and validating potential issues so that they can focus their security efforts on remediation.

Bugcrowd announced the United States Patent & Trademark Office has granted the company two patents for its proprietary systems and methods for identifying vulnerabilities in IT assets utilizing a crowdsourcing approach. U.S. Patent No. 10,972,494 and U.S. Patent No. 11,019,091 validate Bugcrowd's unique ability to leverage and integrate the expertise of the Crowd with its platform, common service infrastructure, workflow orchestration, and cross-organizational analytics to secure innovation sooner.

Bugcrowd announced Ellie Wu has joined its executive team as Vice President of Customer Experience. Wu will lead Bugcrowd's efforts to deliver customer experience and enhance the company's position as customers' first choice for a crowdsourced cybersecurity vendor.

The Cybersecurity and Infrastructure Security Agency, a federal agency of the US government, has selected Bugcrowd to launch its first federal civilian enterprise-wide crowdsourced vulnerability disclosure policy platform in support of Binding Operational Directive 20-01. CISA will offer this VDP platform service to Federal Civilian Executive Branch agencies which will set a new precedent for federal civilian enterprise-wide security.

Bugcrowd announced the expansion of its executive team with Nick McKenzie joining as Chief Information and Security Officer and Sammie Walker as Chief Marketing Officer. As CMO, Walker will focus on global marketing initiatives designed to accelerate growth and solidify Bugcrowd's reputation as the crowdsourced cybersecurity leader.

Bugcrowd announced the appointment of David Castignola as Chief Revenue Officer. Castignola joins Bugcrowd after exceptional growth in the second quarter of fiscal year 2021, driven by a 133% increase in bookings in its international segment and an increase of more than 50% in international customers despite the downturn brought on by COVID-19.

Bugcrowd announced the addition of two board advisory members, Norma Lane, chief human resources officer and executive vice president of people and places at Infoblox, and Dave Gerry, chief revenue officer and head of global operations at WhiteHat Security, a wholly-owned, independent subsidiary of NTT. Both advisors bring a broad set of operational, technical and business management expertise, providing an immediate impact to Bugcrowd as it expands its global workforce and continues to evolve its cybersecurity platform. Lane and Gerry join an advisory board composed of a deep bench of technology and cybersecurity executives.

FireEye this week announced that its Bugcrowd-powered bug bounty program has become public, for all registered researchers to participate. The program, which has been running privately on the crowd-sourced bug hunting platform for a while, welcomes all Bugcrowd researchers interested in identifying vulnerabilities in a broad range of FireEye websites, including those of subsidiaries and localized domains.

Virtual private network service ExpressVPN this week announced the launch of a bug bounty program managed by crowdsourced security testing platform Bugcrowd. ExpressVPN has been running a bug bounty rewards program for four years, paying tens of thousands of dollars to security researchers who reported vulnerabilities in its apps, network, servers, site, and routers, among other assets.

Leveraging Bugcrowd's global network of uniquely-skilled and proven pen testers, Bugcrowd Classic Pen Test adds to the company's Pen Test Portfolio, helping organizations reduce testing timelines while meeting critical compliance requirements and adhering to security best practices. Bugcrowd's security platform has proven that strategic insertion of human ingenuity across the SDLC can increase critical findings, while reducing risk and business overhead. Bugcrowd Next Gen Pen Test, and now Classic Pen Test, both eliminate these challenges by providing immediate access to an on-demand global network of pay-per-engagement, or pay-per-finding pen testers, thoroughly vetted, intelligently matched, and expertly managed through the Bugcrowd platform.