Bugcrowd Blog - Plushcap

Blog URL

www.bugcrowd.com/blog

Posts YTD

33 ↓ vs 65 last year

Avg Posts/Month

6.9 since 2022

Monthly Post Volume

Start year:

Post Details

Search:

Title	Author	Published	Words	HN Pts
The Power of Bug Bounty Programs in Enhancing PCI-DSS Compliance	Justin Kestelyn, Bugcrowd Head of Product Marketing	2024-10-01	689	--
Researcher Spotlight: Alexander Pick	Santerra Holler	2022-06-04	674	--
Bugcrowd Uncovers Up to 20x More Vulnerabilities for TX Group	Lisa Bergamo	2022-11-02	403	--
The 12 Days of Swagmas	Erica Azad	2023-12-21	760	--
The NIS2 Directive, Explained	Gareth O Sullivan	2024-10-08	1,450	--
Supply Chain Backdoors, xz/liblzma, CVE-2024-3094, and what we currently know	Michael Skelton, VP of Operations	2024-03-31	1,741	--
2024 Hacker Showdown: Carnival Of ChAIos	Bugcrowd Researcher Success	2024-10-10	670	--
Researcher Spotlight: Nagli	Jordyn Jones	2022-11-11	1,218	--
Hacker Spotlight: OrwaGodfather	Jordyn Jones	2023-04-18	1,576	--
Q&A with Nick McKenzie: CISO Advice, Generative AI, and Security Predictions	Erica Azad	2023-08-15	806	--
Meet Cooties; Pentester, CTF Enthusiast, and Full-time University Student	Santerra Holler	2024-09-26	973	--
Cybersecurity and Generative AI Predictions with David Fairman, CIO and CSO of …	Erica Azad	2023-08-08	905	--
Collaboration, respect, and trust: it’s what makes the crowdsourced security world go …	Grant McCracken	2022-04-27	1,343	--
Researcher Spotlight: Ankit Singh	Jordyn Jones	2022-06-30	1,252	--
What it’s like working at Bugcrowd—As told by the Bugcrowd People Team	Vangie Field	2024-05-21	1,098	--
Hacker Spotlight: Cinzinga	Santerra Holler	2023-09-13	1,085	--
Career advice from women in cybersecurity for International Women’s Day	Erica Azad	2024-03-08	894	--
A Hacker’s Guide to Navigating Bugcrowd’s Code of Conduct	Declan Murphy	2024-04-02	604	--
Reduce Cyber Risk with Attack Surface Discovery	Bugcrowd	2024-09-10	1,377	--
The next step in security program management	Paddy Cassidy	2024-04-04	875	--
ExpressVPN Uses Crowdsourced Security to Continuously Improve its Security Posture	Bugcrowd Customer Marketing	2023-10-10	427	--
Security Flash – Cyberattacks on MGM and Caesars	Santerra Holler	2023-10-12	790	--
A guide to Bluetooth Low Energy hacking	Bugcrowd	2024-09-12	3,430	--
Hacker Spotlight: Dipen	Santerra Holler	2023-08-17	840	--
Max Pen Tests: Combining the power of pen testing and bug bounty …	Erica Azad	2024-03-06	536	--
Expert Advice You Don’t Want to Miss	Santerra Holler	2022-01-04	1,437	--
Standard Pen Tests Are Now Just A Few Clicks Away	Kaushik Srinivas	2023-04-19	541	--
Bugcrowd Platform Behavior Standards	Santerra Holler	2024-06-04	1,026	--
The Human Attack Surface: A Serious Threat to Cybersecurity	Bugcrowd	2024-09-12	1,344	--
Announcing Multi-tier Program Management on the Bugcrowd Platform	Paddy Cassidy	2022-10-24	751	--
Shodan: The Search Engine For Hackers	Guest Contributor	2024-09-18	1,411	--
Get to know the Bugcrowd Security Knowledge Graph	Justin Kestelyn, Bugcrowd Head of Product Marketing	2024-02-27	485	--
Top 8 CISO Priorities in 2024	Erica Azad	2024-07-10	813	--
WiFi hacking tools and how to use them	Bugcrowd	2024-07-24	1,934	--
Researcher Spotlight: Paolo Arnolfo (sw33tLie)	Jordyn Jones	2022-08-01	1,212	--
Learnings from Bugcrowd’s Customer Advisory Board	Paul Ciesielski	2024-05-29	526	--
What is Penetration Testing?	Samuel Tyler	2023-11-16	2,145	--
Hackers Look Ahead To 2023	Santerra Holler	2023-01-18	896	--
What is a Bugcrowd Joinable Program?	Santerra Holler	2022-05-11	376	--
Hackers Wanted for Aleo’s Inaugural Bug Bounty Program!	Santerra Holler	2023-07-20	478	--
What is a Bug Bounty Program?	Bugcrowd	2024-02-20	1,849	--
Metrics for Growing and Improving Your Bug Bounty Program	Grant McCracken, VP of Operations	2022-10-20	889	--
Ingenuity Unleashed with Bugcrowd at Black Hat USA 2023	Erica Azad	2023-08-01	494	--
Bugcrowd Earns CSA STAR L1 Certification	Rakesh Unnikrishnan	2023-06-30	390	--
7 Rules for Top-notch Web3 Bug Bounty Programs	Security Solutions Architecture Team	2022-09-21	1,028	--
Announcing Our Latest Vulnerability Rating Taxonomy Update	James McLean	2023-11-27	1,075	--
VRT update: Doubling down on hardware vulnerabilities	Michael Skelton, VP of Operations	2024-04-09	1,417	--
Introducing VDP Compliance—A Free Offering From Bugcrowd	Michael Skelton, VP of Operations	2024-05-02	610	--
New UK Legislation Must Protect Good-Faith Hackers	Dave Gerry	2023-10-23	551	--
Inside the Platform: Bugcrowd’s Vulnerability Trends Report	Erica Azad	2024-01-24	456	--
5 Reasons why Customers Choose the Bugcrowd Platform	Murtaza Hafizji	2024-04-18	1,014	--
Security Flash: CISA Order to Disconnect Ivanti Products	Erica Azad	2024-02-01	293	--
Racing against time: An introduction to race conditions	Santerra Holler	2024-08-21	1,568	--
Are Cybersecurity Investments Recession-proof?	Justin Kestelyn, Bugcrowd Head of Product Marketing	2022-12-06	476	--
The Three Principles of Bug Bounty Duplicates	Grant McCracken, VP of Operations	2023-06-29	1,759	--
What is Bugcrowd’s Hacker Advisory Board?	Emma Navajas	2024-08-29	1,120	--
A Comprehensive Approach to People Resource Management	Paddy Cassidy	2024-10-02	724	--
Score big in Meme Madness	Jordyn Jones	2024-03-20	455	--
Customer Spotlight: Martin Choluj, VP of Security at ClickHouse	Bugcrowd Customer Marketing	2023-12-14	471	--
Attack Surface Management vs Vulnerability Management	Bugcrowd	2024-08-13	1,994	--
Spotlight: Ross McKerchar, CISO at Sophos	Erica Azad	2024-07-02	743	--
6 Hot Takes from Black Hat 2023 & DEF CON 31	Erica Azad	2023-08-23	996	--
Announcing our P1 Warriors for 2022	Jordyn Jones	2023-03-21	235	--
Why You Need to Invest in Your Program Health to See the …	Bugcrowd Researcher Success	2022-08-25	1,980	--
Researcher Spotlight: Erik de Jong	Jordyn Jones	2023-02-07	2,045	--
The Digital Operational Resilience Act (DORA), Explained	Gareth O Sullivan	2024-09-05	1,431	--
Pen Testing as a Service now available in Singapore	Samantha Andersson	2024-04-12	530	--
Advice for pursuing a cybersecurity career	Jordyn Jones	2024-03-28	896	--
Inside the Mind of a CISO	Erica Azad	2024-06-27	459	--
AI security in 2024: What’s new?	Bugcrowd	2024-04-03	1,789	--
5 Ways to Reduce your Cloud Attack Surface	Bugcrowd	2024-08-26	1,767	--
Know the Warning Signs of “Crowd Washing”	Justin Kestelyn, Bugcrowd Head of Product Marketing	2023-02-07	699	--
Hackers in the White House	Casey Ellis	2023-03-03	704	--
Defining Cybersecurity Team Colors (and How Bugcrowd Fits In)	Justin Kestelyn, Bugcrowd Head of Product Marketing	2022-03-24	877	--
Understanding Scope for Higher Payouts	Santerra Holler	2024-06-11	913	--
Introducing LevelUpX – Resources for the Community by the Community	Santerra Holler	2022-05-09	279	--
2022 MVP Winner Roundup	Jordyn Jones	2023-03-21	312	--
Breaking News: SEC Adopts New Rules for Cybersecurity Risk Management, Strategy, Governance, …	Dave Gerry	2023-07-27	696	--
Asset Discovery: Everything You Should Know	Bugcrowd	2024-08-22	2,224	--
AI deep dive: Pen testing	Bugcrowd	2024-05-14	2,083	--
Announcing Continuous Attack Surface Pen Testing from Bugcrowd	Marios Kyriacou	2024-08-07	650	--
Unsolved Cyber Mysteries Volume 3: Code Red	Erica Azad	2023-11-30	309	--
The Vegas Bug Bash 2022 Recap!	Santerra Holler	2022-09-07	389	--
Behind the Scenes: Bugcrowd in Times Square	Samantha Andersson	2024-02-29	1,271	--
Bugcrowd Acquires Informer	Dave Gerry	2024-05-23	343	--
The Top Five Generative AI Findings from Inside the Mind of a …	Erica Azad	2023-08-30	228	--
Hacker Cup 2023; Hack Hack Revolution	Santerra Holler	2023-10-26	817	--
Defining Cyber Attack Liability	Justin Kestelyn, Bugcrowd Head of Product Marketing	2022-08-30	484	--
How to build a secure recon network using Tailscale	Rami Tawil	2024-09-17	1,924	--
Defining and Prioritizing AI Vulnerabilities for Security Testing	Michael Skelton, VP of Operations	2023-12-19	970	--
How to write an enticing managed bug bounty brief	Rami Tawil	2024-07-08	2,228	--
The Unlikely Romance Between Hackers and CISOs	Nick McKenzie	2024-02-13	1,100	--
10 Essentials to Look for in a Crowdsourced Security Platform	Erica Azad	2023-07-24	251	--
Bugcrowd’s Annual Buggy Awards are Back	Jordyn Jones	2023-03-21	1,202	--
Axis Communications Reduces Risk with Bugcrowd’s Cybersecurity Platform	Athena Peterson	2023-06-27	621	--
Vulnerability Disclosure Program or Managed Bug Bounty: How to Determine which Program …	Murtaza Hafizji	2023-12-15	1,038	--
Builders and Breakers: How Ethical Hackers are Securing Elections	Casey Ellis	2024-04-30	901	--
Fight the Fear of Shadow and Zombie APIs	Justin Kestelyn, Bugcrowd Head of Product Marketing	2022-04-27	540	--
How Different Hacker Roles Contribute to Crowdsourced Security	Michael Skelton, VP of Operations	2023-03-22	1,109	--
VRT update: What does AI data bias look like?	Michael Skelton, VP of Operations	2024-07-16	1,175	--
Why Attack Surface Discovery Tools Matter	Bugcrowd	2024-09-05	1,137	--
Researcher Spotlight: anhnt1337	Jordyn Jones	2022-12-05	2,087	--
Tango incentivizes trusted hackers to secure its incentive program	Bugcrowd Customer Marketing	2024-02-22	523	--
How CrowdMatch Strengthens Crowd Engagement and Improves Researcher Rewards	Justin Kestelyn, Bugcrowd Head of Product Marketing	2022-07-07	558	--
AI vulnerability deep dive: Prompt injection	Bugcrowd	2024-04-23	2,014	--
Bugcrowd’s Latest Funding Tops $100M to Drive New Growth	Dave Gerry	2024-02-12	461	--
12 Common Attack Vectors you Need to be Aware of	Bugcrowd	2024-08-15	1,858	--
Introducing the new Insights Dashboard	Kaushik Srinivas	2024-08-28	542	--
How T-Mobile Is Using a New Bug Bounty Program to Keep Customers …	Bugcrowd Customer Marketing	2023-08-30	1,107	--
Investing in Customer Success: Announcing Faster, More Agile Penetration Testing and More	Justin Kestelyn, Bugcrowd Head of Product Marketing	2022-02-15	777	--
Bugcrowd Builds on Momentum with Key Leadership Promotions	Dave Gerry	2024-02-08	523	--
Why Bug Bounty Payouts Are Worth Far More Than Their Cost	Matthias Held, Technical Program Manager	2023-11-09	918	--
Is An Open Scope Program Right For Me?	Santerra Holler	2022-08-31	442	--
The Cybersecurity Skills Gap in a Changing Threat Landscape	Erica Azad	2024-02-05	542	--
Overview of new cybersecurity regulations and their impact on businesses	Justin Kestelyn, Bugcrowd Head of Product Marketing	2024-05-28	1,224	--
Rotating pen test vendors: Is it worth it?	Justin Beachler	2024-10-09	937	--
Attack Surface Management 101: An Essential Guide	Bugcrowd	2024-08-19	1,766	--
Will GPT-Based Chatbots Become A Thing For Malicious Hackers?	Justin Kestelyn, Bugcrowd Head of Product Marketing	2023-01-12	440	--
Protecting what Matters: Announcing Enhanced Multi-Factor Authentication (MFA) for Programs	Abigail Nguy	2022-03-29	285	--
A guide to vulnerability remediation vs mitigation	Guest Contributor	2024-09-25	1,445	--
How to hack with the Flipper Zero	Bugcrowd	2024-08-27	1,768	--
Celebrating 10 years of Bugcrowd	Bugcrowd	2022-09-07	908	--
Looking Back: Inside the Mind of a Hacker 2021 Report	Bugcrowd	2022-01-25	566	--
How Successful ID Verification Keeps You Safe and Leads to More Opportunity	Santerra Holler	2023-05-25	476	--
Configuring Notifications for P1 Response in the Bugcrowd Platform	Kaushik Srinivas	2023-02-09	265	--
Leading the Crowdsourced Security Charge–Bugcrowd 2023 Recap	Dave Gerry	2024-02-06	843	--
Hacker spotlight: Specters	Santerra Holler	2024-05-06	1,169	--
Introducing AI Penetration Testing	Julian Brownlow Davies	2024-05-01	510	--
Why CISOs Need Complete Attack Surface Visibility	Bugcrowd	2024-08-20	1,677	--
Unveiling TE.0 HTTP Request Smuggling: Discovering a Critical Vulnerability in Thousands of …	Guest Post	2024-07-17	1,672	--
The Shocking Truth You May Not Know About Being A Full-Time Bug …	Michael Skelton, VP of Operations	2024-06-25	2,128	--
The Power of Numbers: Benefits of Crowdsourced Security Testing	Bugcrowd	2023-12-01	2,016	--
6 Steps to Improve Your Security Posture	Bugcrowd	2024-09-03	1,688	--
Bugcrowd’s Log4j Response: Behind the Numbers	Justin Kestelyn, Bugcrowd Head of Product Marketing	2022-01-06	490	--
Kiteworks’ New Program Promotion	Bugcrowd Researcher Success	2022-03-03	399	--
New Wave of Legislation Puts Crowdsourced Cybersecurity in the Spotlight	Justin Kestelyn, Bugcrowd Head of Product Marketing	2022-10-11	661	--
The UK’s Computer Misuse Act (1990) is up for revision. It’s time …	Casey Ellis	2023-03-28	412	--
RSA Conference Recap: The Security Impacts of Artificial Intelligence	Dave Gerry	2023-05-04	542	--
Partnering with Technical Customer Success Managers at Bugcrowd	Elle Green	2024-02-28	833	--
What is Offensive Security?	Bugcrowd	2024-01-25	1,910	--
Beyond the Hype: Considerations for Rational, Effective, and Ethical AI Regulation	Bugcrowd	2024-04-24	2,234	--
Why Hack with Bugcrowd?	Santerra Holler	2024-05-21	832	--
Security Industry Veteran Braden Russell Joins Bugcrowd as Chief Product Officer	Bugcrowd	2024-08-27	731	--
Vulnerability Management Lifecycle	Guest Contributor	2024-10-04	1,527	--
Hacker Spotlight: BusesCanFly	Jordyn Jones	2023-06-27	792	--
Researcher Spotlight: TodayIsNew	Jordyn Jones	2023-01-09	1,126	--
Bugcrowd Security Knowledge Platform Available on Red Hat Marketplace to Help Customers …	Lisa Bergamo	2022-04-21	431	--
5 ways to tell if your bug bounty engagement is successful	Matias Altamirano	2024-09-24	898	--
3 Steps Rapyd Took to Make its Program Public	Bugcrowd Customer Marketing	2024-02-14	370	--
The Ransomware “Firehose” Makes Crowdsourced Security a P1	Justin Kestelyn, Bugcrowd Head of Product Marketing	2022-08-23	705	--
How to get Private Invites on the Bugcrowd Platform	Santerra Holler	2024-05-07	724	--
Bugcrowd at RSA: Meet with the team!	Bugcrowd	2024-05-01	466	--
The Inside Scoop from the 2022 Hacker Cup Winners	Jordyn Jones	2023-04-19	1,822	--
Demystifying private invitations for hackers	Ben Bowen	2024-08-14	1,374	--
Announcing Enhancements to Industry Comparison Reports in the Bugcrowd Platform	Abigail Nguy	2023-01-26	215	--
Bugcrowd PTaaS Takes Home Five Awards for Cybersecurity Excellence	Dave Gerry	2023-05-11	399	--
Unsolved Cyber Mysteries Volume 2: The WANK Worm	Erica Azad	2023-10-18	271	--
Pen Testing vs. Bug Bounty: Which, When, Why	Justin Kestelyn, Bugcrowd Head of Product Marketing	2024-05-22	1,669	--
Hacker Cup 2023 Recap—Big Payouts, Hacker Collaboration, and Awesome Swag	Bugcrowd Researcher Success	2024-02-15	362	--
Researcher Spotlight: Hx01	Jordyn Jones	2022-09-08	584	--
Demystifying crowdsourced security: How to choose the right engagement for your organization	Rami Tawil	2024-03-20	1,636	--
Welcome George Gerchow of MongoDB to the Bugcrowd Advisory Board	Erica Azad	2024-07-09	366	--
Researcher Submission Templates	Bugcrowd Researcher Success	2022-06-08	442	--
Bugcrowd Named a Leader in GigaOm’s Pen Test as a Service Report	Justin Kestelyn, Bugcrowd Head of Product Marketing	2023-01-18	226	--
Making Apps React to Platform Events Through Webhooks	Eamon O'Neill	2022-02-10	356	--
Welcome Former Google CIO Ben Fried to the Bugcrowd Advisory Board	Erica Azad	2024-06-19	617	--
Introducing Request a Response: A new standard for hacker and customer response …	Abigail Nguy	2023-05-03	631	--
Your Guide to Finding Treasure at Black Hat USA and DEF CON …	Erica Azad	2024-07-31	490	--
Hacker spotlight: Brandon Reynolds	Santerra Holler	2024-03-13	1,149	--
Submissions With Bugcrowd	Santerra Holler	2022-01-07	185	--
Introducing Bugcrowd AI Bias Assessments	Dave Gerry	2024-04-16	546	--
6 Cybersecurity Red Flags	Erica Azad	2023-08-02	221	--
2024 Cybersecurity Trends and Predictions	Casey Ellis	2023-12-27	287	--
Hacker Cup 2022; Bugcrowd Team Hunt	Jordyn Jones	2022-12-02	577	--
ABP (Always Be Prepared) For Social Engineering Threats	Justin Kestelyn, Bugcrowd Head of Product Marketing	2022-06-23	346	--
Your Guide to Bugcrowd Support	Santerra Holler	2022-04-28	1,045	--
Introducing Unsolved Cyber Mysteries and the Case of the Max Headroom Signal …	Erica Azad	2023-10-06	431	--
Meet Bugcrowd at Infosecurity Europe 2023	Bugcrowd	2023-06-16	233	--
Getting Triage Right for Researchers	Michael Skelton, VP of Operations	2022-11-10	771	--
What is Penetration Testing as a Service?	Bugcrowd	2023-12-07	1,452	--
OWASP Top 10: Security threats facing AI systems	Bugcrowd	2024-05-14	757	--
The Total Economic Impact™ of Bugcrowd Managed Bug Bounty	Erica Azad	2024-04-17	652	--
What is an Attack Surface?	Bugcrowd	2024-08-08	1,098	--
Announcing: Industry Comparison Reports	Murtaza Hafizji	2022-04-05	223	--
AI deep dive: Data bias	Bugcrowd	2024-05-07	2,186	--
Researcher Spotlight: bl3ep	Jordyn Jones	2023-03-08	1,160	--
13 Scary Security Stats that will Haunt You	Erica Azad	2023-10-17	264	--
Inside the Mind of a Hacker: 2023 Edition	Erica Azad	2023-07-12	528	--
Vulnerability Disclosure Policy: What is It & Why is it Important?	Bugcrowd	2023-12-15	1,374	--
3 Key Components of Researcher Submission Templates	Michael Skelton, VP of Operations	2022-06-14	677	--
New Bugcrowd Platform Features That Save Time and Money	Abigail Nguy	2022-08-04	654	--
Haunted hardware: Unmasking IoT vulnerabilities	Erica Azad	2024-10-28	1,438	--
What is Quishing?	Julian Brownlow Davies	2024-11-05	414	--
Setting up your first hardware hacking lab	Bugcrowd	2024-10-18	1,115	--
Hacker Spotlight: Ads Dawson	Erica Azad	2024-10-23	913	--
Hacker spotlight: Flaviu	Santerra Holler	2024-10-15	1,538	--
Hacker spotlight: Haddix	Santerra Holler	2024-11-07	1,353	--
The power of automation and collaboration in bug bounty	Guest Post	2024-11-14	1,027	--
How to Hack: A Step-by-Step Journey brought to you by Bugcrowd and …	Santerra Holler	2023-03-15	366	--
5 CISO myths, debunked	Erica Azad	2024-07-17	507	--
Crowdsourced security as a ‘force multiplier’ in the public sector	Kent Wilson	2024-03-25	701	--
What is AI red teaming?	Bugcrowd	2024-10-17	1,455	--
Inside the Mind of a Hacker: 2024 Edition	Erica Azad	2024-10-16	561	--
Why you aren’t finding bugs	Andrew Pratt	2024-10-22	1,903	--
This is No Time to Retreat In Cybersecurity	Nick McKenzie	2023-02-27	558	--
Your guide to common prompt defenses	Guest Post	2024-11-14	2,209	--
Hacker spotlight: Andrew Pratt	Santerra Holler	2024-10-30	627	--
Bugcrowd Secures $50 Million Growth Capital	Dave Gerry	2024-10-31	370	--
The Most Significant AI-related Risks in 2024	Matthias Held, Technical Program Manager	2024-01-10	2,602	--
Cloud and OSS risks have Bug Bounty adoption humming	Justin Kestelyn, Bugcrowd Head of Product Marketing	2022-09-13	595	--
AI deep dive: LLM jailbreaking	Bugcrowd	2024-11-19	1,419	--
The ultimate beginner’s guide to Burp Suite	Santerra Holler	2024-11-20	3,536	--
Machine talk: The long road to understanding payload obfuscation	Santerra Holler	2024-11-21	4,201	--
Welcome to Gapsville!	Stan Breacherton, Mayor of Gapsville	2024-11-22	608	--
A Security Leader’s Guide to the New Product Liability Directive	Justin Kestelyn, Bugcrowd Head of Product Marketing	2024-11-25	858	--
Hacker spotlight: Rami Tawil	Santerra Holler	2024-11-26	1,363	--
Breaking the Chain: Exploiting OAuth and “forgot password” for account takeover	Santerra Holler	2024-12-03	2,149	--
CISA’s VDP platform annual report, explained	Kent Wilson	2024-12-04	914	--
How generative AI is changing how cybercrime gangs work	Alistair G, Director of Red Team Operations	2024-12-11	1,387	--
The ultimate beginner’s guide to the Ax Framework	Santerra Holler	2024-12-10	1,873	--
Hacker spotlight: Ninad Mishra	Santerra Holler	2024-12-12	958	--
The 12 Hacker “Battlestations” of the Holidays	Erica Azad	2024-12-17	487	--
Something isn’t right in Gapsville	Guest Contributor	2024-12-18	273	--
2025 cybersecurity predictions	Erica Azad	2024-12-19	352	--
A guide to Bluetooth Low Energy hacking: Part II	Andrew Pratt	2025-01-09	2,907	--
Taking platform support for CVSS to the next level	Abigail Nguy	2025-01-14	255	--
Shaping the future of cybersecurity: The Hacking Policy Council’s 2024 achievements and …	Casey Ellis	2025-01-15	1,148	--
Security flash: Salt Typhoon	Erica Azad	2025-01-16	386	--
Bugcrowd’s Bugboss Fighter Challenge	Santerra Holler	2025-01-21	286	--
MFA security part 1: How attackers bypass multi-factor authentication	Alistair G, Director of Red Team Operations	2025-01-22	2,100	--
Managing the cost implications of EU DORA compliance	Julian Brownlow Davies	2025-01-23	1,064	--
The new (de)regulated AI security space: A hacker’s perspective	Guest Post	2025-01-27	1,310	--
Hacking Crypto Part I	Nerdwell	2025-01-30	4,781	--
The EU Cyber Resilience Act (CRA), explained	Gareth O Sullivan	2025-02-11	923	--
Continuous security testing for DORA compliance	Julian Brownlow Davies	2025-01-29	989	--
The EU AI Act, explained	Gareth O Sullivan	2025-02-06	890	--
MFA security part 2: How to prevent MFA bypass	Alistair G, Director of Red Team Operations	2025-02-11	626	--
Point-in-time vs. continuous penetration testing: A comparison guide	Justin Kestelyn, Bugcrowd Head of Product Marketing	2025-02-03	891	--
Hacker spotlight: Meet Nerdwell	Santerra Holler	2025-02-05	1,531	--
Crowdsourced intelligence in action: Bugcrowd’s 2024 year in review	Dave Gerry	2025-02-04	943	--
The ultimate beginner’s guide to Nuclei	Andrew Pratt	2025-02-13	2,550	--
Strengthening decentralized security: Bugcrowd’s VRT 1.15 update	Paddy Cassidy	2025-02-12	553	--
Bugcrowd security flash: CFAA and thought crime	Erica Azad	2025-02-13	558	--
How to hack WiFi	Andrew Pratt	2025-02-26	2,831	--
Hacker Experience Surveys: Amplifying your voice at Bugcrowd	Emma	2025-02-19	1,415	--
A look inside global collegiate pen testing	Bugcrowd	2025-02-21	1,990	--
Hacking crypto part II: Hacking blockchains for fun and profit	Nerdwell	2025-02-20	4,070	--
The biggest security risks facing the maritime shipping industry	Julian Brownlow Davies	2025-02-27	1,191	--
Hacking LLM applications: A meticulous hacker’s two cents	Guest Post	2025-02-27	3,438	--
A hacker breaks down Netflix’s new show, Zero Day	Guest Contributor	2025-03-06	1,900	--
What you need to know about H.R. 872	Casey Ellis	2025-03-06	488	--
Hardware hacking with the University of New Brunswick Cybersec Club	Bugcrowd Researcher Success	2025-03-04	705	--
Secure by Design: From pledge to practice	Casey Ellis	2025-03-05	665	--
Best practices to avoid Bugcrowd platform violations	Guest Post	2025-03-12	1,112	--
The rise of device code phishing	Alistair G, Director of Red Team Operations	2025-03-11	1,407	--
Safe harbor and the future of AI flaw reporting: Lessons from vulnerability …	Casey Ellis	2025-03-13	1,142	--
Announcing the new women-only hacking community: HackerHER Network	Emma	2025-03-13	809	--
Red teaming vs. penetration testing: A guide to comprehensive security testing	Justin Kestelyn, Bugcrowd Head of Product Marketing	2025-03-13	1,656	--
Why AI will never replace the Crowd	Julian Brownlow Davies	2025-03-19	899	--
Remote code execution (RCE) 101	Guest Post	2025-03-26	1,092	--
A low-cost hacking sidekick: Baby steps to using offensive AI agents	Ads Dawson	2025-03-27	3,235	--
Hacking the stars: My experience with NASA’s VDP	Santerra Holler	2025-04-01	1,033	--
Bugcrowd Security Update: Password Reset and MFA Requirement	Santerra Holler	2025-04-07	232	--
Reflecting on the fourth Hacker Showdown: Carnival of ChAIos	Santerra Holler	2025-04-08	632	--
The ultimate beginner’s guide to Android hacking	Andrew Pratt	2025-04-09	3,337	--
XSSpect: A browser extension to automate XSS injection	Phishician	2025-04-09	930	--
Security through the attacker’s lens: How to adopt an adversarial mindset	Erica Azad	2025-04-10	1,303	--
Hacker spotlight: Rhynorater	Santerra Holler	2025-04-15	1,248	--
Everything you need to know about working with hackers	Erica Azad	2025-04-22	892	--
A course on Caido at the University of Arizona	Santerra Holler	2025-04-23	628	--
New platform capability: Automate retesting using AI-generated Nuclei templates	Michael Skelton, VP of Operations	2025-04-22	343	--
A hacker explains the recent crosswalk signal hijacks	Guest Post	2025-04-23	1,052	--
Introducing Bugcrowd Red Team as a Service (RTaaS)	Julian Brownlow Davies	2025-04-28	2,042	--
VDP Success: Lessons from the State of California’s Department of Technology	Erica Azad	2025-04-30	1,597	--
How to standout with better security: Your guide to proactive security	Bugcrowd	2025-04-29	695	--
Hacker spotlight: P3t3r_R4bb1t	Santerra Holler	2025-04-30	1,112	--
Community spotlight: ClassDojo	Erica Azad	2025-05-07	833	--
How to retain hackers on your engagement	Rami Tawil	2025-05-06	1,475	--
Bugcrowd’s commitment to CISA’s “Secure by Design” Pledge	Trey Ford	2025-05-05	797	--
Explain it like I’m five: Artificial Intelligence	Andrew Pratt	2025-05-08	1,793	--
Community spotlight: Sendbird	Erica Azad	2025-05-14	736	--
Your hacking style based on your zodiac sign	Erica Azad	2025-05-21	2,096	--
Introducing the Engagement Simulator: Your blueprint for bug bounty ROI	Abigail Nguy	2025-05-15	658	--
Pentester spotlight: Alx	Santerra Holler	2025-05-22	1,360	--
Hacking AI applications: In the trenches with DSPy	Ads Dawson	2025-05-13	4,419	--
HackHER spotlight: Meet InsiderPhD	Santerra Holler	2025-05-20	1,513	--
Securing global cybersecurity: Why CISA, CVE, and other global initiatives matter	Casey Ellis	2025-05-21	923	--
A basic guide to iOS testing	Guest Post	2025-05-29	3,277	--
Hacker spotlight: Ruikai Peng	Santerra Holler	2025-05-28	1,760	--
Behind the scenes: How Bugcrowd builds red teams	Erica Azad	2025-06-05	2,631	--
Bolt launches its public bug bounty engagement with Bugcrowd to secure its …	Erica Azad	2025-06-04	661	--
Hacking crypto Part III: Hardware	Nerdwell	2025-06-10	3,111	--
Rigging the system: The art of AI exploits	Ads Dawson	2025-06-11	1,852	--
Pop quiz: Red team red flags	Erica Azad	2025-06-12	1,691	--
Introduction to UART hardware hacking	Guest Post	2025-06-17	1,341	--
How to find bugs on a hardened target using gadgets	Guest Post	2025-07-16	2,915	--
Tips to break into a career in cybersecurity	Erica Azad	2025-06-24	1,018	--
Security isn’t static: Why your strategy should evolve like your threats	Julian Brownlow Davies	2025-07-22	2,982	--
Welcome Umesh Shankar to the Bugcrowd Advisory Board	Erica Azad	2025-07-08	776	--
Welcome Antonio Bovoso to the Bugcrowd Advisory Board	Erica Azad	2025-07-29	535	--
What you need to know about CVE-2025-0133	Erica Azad	2025-06-18	174	--
Hacker opinion piece \| Will artificial intelligence replace hackers?	Guest Post	2025-07-21	1,363	--
Join Bugcrowd and Hack the Box for the ultimate CTF	Santerra Holler	2025-06-24	438	--
Why blending human intuition with automation is the future of hacking	Guest Post	2025-07-24	2,046	--
Access Control vs Account Takeover: What Bug Bounty Hunters Need to Know	Guest Post	2025-07-03	1,731	--
Top pentester: Nerdwell	Bugcrowd	2025-08-05	1,303	--
Getting to know the Crowd: Answers to your top 7 questions on …	Justin Kestelyn, Bugcrowd Head of Product Marketing	2025-08-06	922	--
Community Leader of the year: sw33tLie	Bugcrowd	2025-08-04	1,046	--
The Breakthrough Hacker of 2025: bronxi	Bugcrowd	2025-08-07	1,093	--
The guide to blind XSS: Advanced techniques for bug bounty hunters worth …	Guest Post	2025-08-12	1,213	--
Security flash: Resilience over fear	Bugcrowd	2025-06-23	306	--
Amplify your red team’s impact with Bugcrowd’s RTaaS	Erica Azad	2025-07-10	1,590	--
Bugcrowd names Trey Ford as Chief Strategy and Trust Officer	Erica Azad	2025-08-04	1,035	--
Top P1 Hacker: priyanshuxo	Bugcrowd	2025-08-06	1,077	--
Mobile Hacking Resource Kit: Your one‑stop hub for iOS and Android pen …	Santerra Holler	2025-06-19	1,187	--
Making a difference with a suicide prevention bot	Guest Post	2025-07-02	1,538	--
Introducing Bugcrowd Asset View: Turn assets into actions	Abigail Nguy \| Senior Product Manager	2025-08-05	965	--
Global Security Impact Award winner: T-Mobile	Bugcrowd	2025-08-08	775	--
Introducing Bugcrowd’s Security Innovation Lab	Erica Azad	2025-07-23	596	--
Announcing the Bugcrowd Ingenuity Awards: Celebrating excellence among hackers and industry leaders	Santerra Holler	2025-07-10	356	--
The ultimate beginner’s guide to Caido	Andrew Pratt	2025-06-25	4,163	--
Bugcrowd AI Connect: Bringing vulnerability data to AI applications	Paddy Cassidy	2025-08-05	694	--
What Mission Impossible taught us about AI: The hacker roots of a …	Ads Dawson	2025-08-20	1,761	--
Hacker spotlight: Olufela Osideko	Santerra Holler	2025-08-19	1,139	--
How I hacked my way to the big leagues: Fat bounties, interviews …	Ads Dawson	2025-08-19	3,110	--
A CISO’s guide to red teaming part 1: The role of red …	Alistair G, Director of Red Team Operations	2025-08-21	1,613	--
Bugcrowd AI Triage speeds vulnerability resolution and elevates hacker experience	Braden Russell	2025-08-20	677	--
Hacker spotlight: Bronxi	Santerra Holler	2025-08-26	1,228	--
Bugcrowd response to Salesforce-linked third-party Drift application security event	Nick McKenzie \| Bugcrowd CIO and CSO	2025-08-27	277	--
A CISO’s guide to red teaming part 2: Using red team outcomes …	Alistair G, Director of Red Team Operations	2025-08-28	2,092	--
A CISO’s guide to red teaming part 3: Going beyond technical vulnerabilities …	Alistair G, Director of Red Team Operations	2025-09-04	1,481	--
The two faces of bug bounty hunting: Systemic vs. manual approaches	Guest Post	2025-09-03	957	--
Update: Bugcrowd Response to Salesloft Drift Third-Party Security Event	Nick McKenzie \| Bugcrowd CIO and CSO	2025-09-05	427	--
When attackers log in as you: Understanding broken authentication and session management …	Guest Post	2025-09-10	1,002	--
Welcome to The Mind Cathedral	Omar Carmical	2025-09-10	670	--
Short-term satisfaction for long-term pain: Server security misconfigurations	Guest Contributor	2025-09-16	1,048	--
A CISO’s guide to red teaming part 4: Red teaming for finance …	Alistair G, Director of Red Team Operations	2025-09-18	960	--
Inside the Mind of a CISO 2025	Erica Azad	2025-09-23	561	--
Penetration testing: Automated vs. manual testing methods	Guest Post	2025-09-24	1,782	--
A CISO’s guide to red teaming part 5: Red teaming for healthcare …	Alistair G, Director of Red Team Operations	2025-09-25	734	--
A CISO’s guide to red teaming part 6: Red teaming for manufacturing …	Alistair G \| Director of Red Team Operations	2025-10-02	1,141	--
Tips to building better board decks for CISOs	Erica Azad	2025-10-01	828	--
How to find RCE: A list of pathways and detection methods	Luke (hakluke) Stephens	2025-10-03	3,873	--
A people-first approach: Meet your Bugcrowd team	Bugcrowd	2025-10-06	1,480	--
An introduction to vibe coding	Diana Prodan \| Product Marketing Manager	2025-10-06	1,305	--
CISO excellence story: Tomás Maldonado, National Football League	Erica Azad	2025-10-07	1,040	--
What a Netflix documentary taught us about the power of open-source intelligence	Guest Post	2025-10-08	1,550	--
The human side of zero trust	Julian Brownlow Davies	2025-10-09	343	--
From Jeopardy! to The Terminator: AI vs. AGI vs. ASI	Ads Dawson	2025-10-10	1,294	--
HackHER Spotlight: Brigitte Lewis	Guest Post	2025-10-13	1,452	--
Risk committees for CISOs: Moving from technical expertise to executive strategy	Trey Ford	2025-10-14	1,207	--
CISO excellence story: Dan Maslin, Monash University	Erica Azad	2025-10-15	869	--
A lesson on inference attacks	Ads Dawson	2025-10-16	1,275	--
Takeaways from the biggest sensitive data exposure breaches	Guest Post	2025-10-17	1,382	--
The power of TikTokers: Why everyday internet sleuths are OSINT experts	Luke (hakluke) Stephens	2025-10-20	2,350	--
Bugcrowd named a Leader by G2 in Fall 2025 Report	Meg Noonan \| Senior Manager, Global Marketing Campaigns	2025-10-21	525	--
Ask a hacker: Top vulnerabilities to watch out for	Erica Azad	2025-10-22	713	--
Tricks, not treats: Social engineering tactics that fool the smartest of us	Ads Dawson	2025-10-23	1,058	--
Hacker spotlight: Evan Connelly	Santerra Holler	2025-10-24	1,149	--
My experience hacking as a student (Mi experiencia hackeando como estudiante)	Guest Post	2025-10-27	2,341	--
The CISO’s challenge: Measuring security outcomes	Trey Ford	2025-10-28	1,269	--
How pentesters earn trust on the Bugcrowd Platform	Diana Prodan \| Product Marketing Manager	2025-10-29	1,135	--
Trick or treat: 5 spooky phishing stories	Guest Post	2025-10-30	866	--
Scam season: Don’t get hacked	Santerra Holler	2025-10-31	1,238	--
Bugcrowd acquires Mayhem Security: Redefining AI-powered security testing	Dave Gerry \| CEO, Bugcrowd	2025-11-04	757	--
Hacker spotlight: Amr	Santerra Holler	2025-11-05	1,233	--
Pentester spotlight: Nitesh Bhatter	Santerra Holler	2025-11-06	1,241	--
Real-world cyber events influenced by the OG hacker movie, WarGames	Santerra Holler	2025-11-12	1,658	--
Understanding technical debt: The new zero day	Guest Post	2025-11-18	2,684	--
5 common mistakes when working with hackers	Guest Post	2025-11-20	1,180	--
Security flash: The hacklore project	Erica Azad	2025-12-02	410	--
CVE-2025-55182: What you need to know about React2Shell	Michael Skelton, VP of Operations	2025-12-04	533	--
How I hacked my way to a million dollars: HX007	Guest Post	2025-12-04	2,454	--
The Bugcrowd Academic Program	Kent Wilson	2025-12-09	604	--
Turn vulnerability data into remediation velocity: Introducing Bugcrowd AI Triage Assistant	Joe Castellanos \| Sr. Director of Product Management	2025-12-10	570	--
Bugcrowd introduces AI Analytics: Real-time insight for data-driven security decisions	Alessandra Santos I Product Manager	2025-12-11	767	--
2025 security predictions retrospective	Casey Ellis \| Founder and Advisor	2025-12-16	1,435	--
2026 cybersecurity predictions	Erica Azad	2025-12-17	2,582	--
Hacking Crypto Part IV: Web and mobile applications	Nerdwell	2025-12-18	3,673	--
Hacker spotlight: Faizan Elahi	Santerra Holler	2025-12-23	1,399	--
AI is the new magical master key: How attackers are using AI …	Guest Post	2026-01-07	2,200	--
Your code has vibes, my exploits have receipts	Guest Post	2026-01-13	2,111	--
Navigating financial services regulations with crowdsourced security	Erica Azad	2026-01-15	1,546	--
Life-changing lectures: My day with a top hacker	Guest Post	2026-01-22	1,437	--
Inside the Mind of a Hacker 2026	Erica Azad	2026-01-27	645	--
The value in making mistakes: One hacker’s expert advice	Guest Post	2026-01-28	1,118	--
CISO + hacker spotlight: Meet Aaron Guzman	Erica Azad	2026-02-03	1,037	--
Meet the new Security Inbox: Faster triage, zero friction	Joe Castellanos \| Sr. Director of Product Management	2026-02-04	375	--
Hacker opinion piece: How lazy hacking killed cURL’s bug bounty	Guest Post	2026-02-05	2,001	--
Hacker spotlight: Meet an elite hacking team	Erica Azad	2026-02-10	1,036	--
A guide to the hidden threat of prompt injection	Guest Post	2026-02-11	3,505	--
How vulnerable are vibe-coded apps?	Guest Post	2026-02-12	1,876	--
Three years of AI innovation and hacking	Erica Azad	2026-02-17	273	--
What I learned building AI agents for bug bounty hunting	Guest Post	2026-02-18	2,125	--
Tips to automate your hacking using N8N	Guest Post	2026-02-25	2,088	--
International Women’s Day Spotlight: The HackHer Network	Erica Azad	2026-03-05	880	--
Three AI security assumptions that will break in 2026	Trey Ford	2026-03-10	499	--
Bugcrowd policy changes to address “AI slop” submissions	Trey Ford	2026-03-10	716	--
Breaking down the Cyber Strategy for America	Dave Gerry \| CEO of Bugcrowd	2026-03-16	803	--
10 cybersecurity poems for World Poetry Day	Erica Azad	2026-03-18	917	--
Community spotlight: Moneytree	Erica Azad	2026-03-24	515	--
The benefits of continuous pen testing for financial services organizations	Erica Azad	2026-04-07	459	--
Elevating public sector security: Insights from 3 crowdsourced programs	Erica Azad	2026-04-09	839	--
5 tips to succeed with offensive security in the financial services industry	Erica Azad	2026-04-14	964	--
Hacker spotlight: Meet Satyam Pathania	Erica Azad	2026-04-16	767	--
The pros and cons of red teaming	Erica Azad	2026-04-27	782	--
Sloptimism is breaking any system built on human validation	David Brumley I Chief AI and Science Officer	2026-04-23	1,396	--
Three common hacker mistakes to avoid	Ben Bowen	2026-04-21	1,202	--
What we know about Copy Fail (CVE-2026-31431)	David Brumley I Chief AI and Science Officer	2026-04-29	1,552	--
How automated tools fall short for startup security	Erica Azad	2026-04-29	447	--
How to join our red team: Crowdforce	Alistair G \| Director of Red Team Operations	2026-05-04	1,351	--
Why companies choose Bugcrowd for Managed Bug Bounty (according to G2)	Erica Azad	2026-05-07	1,511	--
Customer AMA webinar recap: Schibsted	Erica Azad	2026-05-05	638	--

Plushcap, by Matt Makai. 2021-2026.