“Security is the foundation on which users trust Schoology. We are committed to users privacy and it is important that we continue to be a platform that users trust. We partnered with Bugcrowd to make our security program stronger, harnessing the breadth and depth of skilled security testers matched with an incredibly powerful platform and team.”
“Our bug bounty plays a key role in our Product Security program. It has helped us to define and shape this program. We are getting access to a large talent pool who are incentivized to test, find and report security vulnerabilities on our platform. This is a win-win situation for everyone.”
"Bugcrowd allows us to focus on our core business, knowing that our systems are in safe hands."
“I could have called anyone to get a clean bill of health, but that`s not our business. We called Bugcrowd because we wanted the most in-depth vetting of our security posture. It`s beyond compliance it`s about true risk reduction.”
“Bugcrowd identified solutions and workflows that fit nicely into our company and current process.”
“It’s a no brainer. You’re getting a much larger pool of people with different back grounds. Whether they’re cloud or mobile or firmware and they’re looking at the product. You get a much better sense of the quality and security of the device rather than going to one or two people.”
"What is amazing about Bugcrowd — With all the security technology and process that we have in place at Motorola we always find bugs when product goes live. Bugcrowd has saved us close to $60 million, simply because we’ve avoided major data breaches in the eyes of our customers."
“We decided to run a bug bounty program in order to get access to a wide variety of security testers. Hiring security researchers is very difficult in today’s market, and even if you can find one, chances are good that person will be a specialist in only one or two areas.”
"Indeed’s Security and R&D teams were impressed by the results of our first Bug Bash event with Bugcrowd’s global community of security researchers,” said Anthony Moisant, Chief Security Officer, and Chief Information Officer for Indeed. “With the help of the Bugcrowd community and platform, we’ve been able to continue strengthening our security posture and work together to protect the information of job seekers and employers."
“Bugcrowd’s Vulnerability Disclosure Program is one of the best value-for-money services that we have. The annual cost of the program is the same cost of one traditional penetration test and the VDP has given us around a 100-fold increase in actionable intelligence.”
"When protecting against 21st century threats, you need a 21st century solution."
“Bugcrowd pen testing gives me, my team, and our clients complete peace of mind that BeeBole is up and running securely."
“In the tax preparation software industry, we deal with highly sensitive data for a large number of individuals. You can pretty much learn anything you want to know about an individual from their tax return. And because of that, we need to make sure the data stays completely secure, which starts with making sure the applications we’re developing are secure as well.”
“It’s huge to be able to directly push vulnerabilities into our Jira queue. We don’t have to treat it any differently, depending on what part of our application is affected, a ticket is created and tasked to the team responsible for building it.”
“Intercom’s business relies on customer trust. To keep this trust we need to use the best tools available to keep our customers’ data secure. Our private bug bounty program with Bugcrowd allowed us to tap into the creativity and abilities of hundreds of security researchers to find and report the most complex bugs – the ones vulnerability scanners just can’t uncover. Now we’re expanding our program for access to a bigger pool of researchers to improve our ability to find and fix vulnerabilities.”