Sign in Subscribe
caseyjohnellis

caseyjohnellis

Sydney, Australia
hacker/hustler. chairman/founder/cto @bugcrowd and cofounder @disclose_io. husband, dad, musician, believer. pioneer of crowdsourced security as-a-service.
11
Sep
Techcrunch: Use ‘productive paranoia’ to build cybersecurity culture at your startup

Techcrunch: Use ‘productive paranoia’ to build cybersecurity culture at your startup

At TechCrunch Early Stage, we asked Casey Ellis, founder, chairman and chief technology officer at Bugcrowd, to share his ideas for how startups can improve their security posture.
6 min read
31
Aug
The Nth Country Experiment and Coincident Vulnerability Discovery

The Nth Country Experiment and Coincident Vulnerability Discovery

Nth Country Experiment - Nuclear MuseumCould any country with the right knowledge and technology build a nuclear bomb? From May
1 min read
29
Aug
Group Letter re IoT Cybersecurity Improvement Act (H.R. 1668)

Group Letter re IoT Cybersecurity Improvement Act (H.R. 1668)

We the undersigned cybersecurity companies and professionals write to express strong support for the IoT Cybersecurity Improvement Act (H.R. 1668). We respectfully urge you and your colleagues to support expedited passage of the bill before the end of the 116th Congress.
1 min read
27
Aug
Public Comment from Casey Ellis, Bugcrowd re DRAFT BOD 20-01

Public Comment from Casey Ellis, Bugcrowd re DRAFT BOD 20-01

Dear Director Krebs and CISA/DHS team, Thank you for the opportunity to comment on this Binding Operational Directive...
6 min read
09
Aug
Forbes: Accelerating secure software development

Forbes: Accelerating secure software development

7. Expect and plan for mistakes. Expect mistakes, and plan to capture and mitigate them quickly. After all, to err
1 min read
07
Aug
NIST SP 800-53 R5 adds Vulnerability Disclosure Programs to Federal Security and Privacy Controls

NIST SP 800-53 R5 adds Vulnerability Disclosure Programs to Federal Security and Privacy Controls

Earlier this week, the National Institute of Science and Technology (NIST) released Revision 5 of NIST Special Publication (800–53)
4 min read
06
Aug
DEF CON Black Hat 2020: Top 10 Tips

DEF CON Black Hat 2020: Top 10 Tips

While it feels illegal to hang out with your friends right now, the pandemic is no match for the dedicated
3 min read
04
Aug
Disclose.io, VDP, Hackers, and voting

Disclose.io, VDP, Hackers, and voting

About 18 months ago, I sat in Capitol Hill with a bunch of other badasses including Matt Blaze, Kimber Dowsett, Jack Cable, Alexander Romero, Leonard Bailey, and others, and talked to voting machine manufacturers and US states.
2 min read
04
Aug
Help! I've found a vulnerability. What now?

Help! I've found a vulnerability. What now?

"You've just found a bug on a company's website. What are the first three to five things you'll try in order to establish contact with them?"
1 min read
03
Aug
WTF is happening on tcp:0? 2020 edition - Update 1

WTF is happening on tcp:0? 2020 edition - Update 1

tl;dr: 0.06% of the publicly-addressable IPv4 space is listening to and responding on TCP Port 0. Why? idk…
1 min read