Cybersecurity
In 2012, Bugcrowd set out to create a radical cybersecurity advantage and level the playing field between attackers and defenders. As one of the first steps on that journey, seven years ago today, we launched our first “Proof of Concept” bug bounty, offering up a total reward pool of $500
Cybersecurity
Quick post re where I’ll be speaking and attending while the infosec/cyberz are in town for RSA Conference and B-Sides: ps all of the Bugcrowd parties, workshops, and meetups are listed here. If you want to attend Mayhem, make sure you sign up!!! It’s getting to be
risk-management
I’m going to provide a practical, ubiquitous, and risk/benefit focussed version of the advice in the tweet, aimed at the average Internet citizen who wants to take advantage of these technologies, while understanding how they can minimize the risks that come with their use.
business-strategy
This concept is pushed pretty hard in Tim Ferriss’ book the 4-Hour Work Week as well… In a nutshell – you don’t want EVERYONE to be your client. You only want the GOOD clients. There’s no point having a great margin, smooth processes, and efficiency and profitability baked into
mindset
QOTD: You have to build the bricks before you can build the Pyramids.
mindset
I live a pretty frenetic and busy life both activity-wise and mentally. Some of this is environmental, most of this is my own making, and almost all of it I love… But it’s important to be reminded to appreciate the simple and sometimes boring things too.
bugcrowd
6 years ago today I got off a plane armed with a bunch of notes. I’d spent a week meeting with pen-testing customers in Melbourne, and I’d been talking to them about bug bounty programs. These conversations and a set of ideas I’d been noodling on for
Cybersecurity
“We had a problem with a few needles, and as an industry decided that the best thing to do was to drop a haystack on them.” This is definitely QOTD from an old cybersecurity industry friend over lunch today. It sums up the current information overload problem for those on
Cybersecurity
If you do a Google Image Search against the word hacker, you’ll get images of scary-looking balaclava-clad cybercriminals hunched over a quintessentially green computer terminal. They’re up to no good… Stealing your data, crashing critical systems, or causing general Internet badness. In reality, the word “hacker” applies to
leadership
Recognizing a problem qualifies you to be a part of the solution. Refusing to be a part of the solution disqualifies you from complaining about the problem.
leadership
Happy New Year! Pretty much everyone I’ve spoken agrees on the same thing: 2017 was a turbulent, change-filled year packed with as many high-highs as it had low-lows… but it’s over now, we’ve turned the clock back to zero, and the 2018 has nothing but potential, impact,
vulnerability-disclosure
Wikileaks’ release of thousands of confidential CIA documents today is yet another demonstration of our just how vulnerable the cybersecurity domain is. Unless we do a better job identifying our vulnerabilities, attackers – be they criminals, hacktivists, hobbyist, or nation state agencies – can and will take advantage of them. What’s