Risky Business #268 -- Outsource your bug bounty program?
This week's feature interview is with Casey Ellis of BugCrowd.com -- a new business that runs outsourced bug bounty programs. It's a great idea and it's one that I personally think will really take off over the next couple of years.
This week's show is brought to you by our good friends at Adobe.
Adobe's director of product security and privacy Brad Arkin will be along a bit later on with an update on the phantom 0day issue the company experienced last year, as well as filling us in on some efforts designed to combat spearphishing attacks that use dodgy Flash objects embedded in Office files. It's more interesting than it sounds!
Adam Boileau is back in the news seat for a chat about recent headlines. You can find links to all the articles we discussed here.
PLUS: Did you know bug bounties are considered adequate testing in PCI audits?1 day 1 hour ago
All the news that's fit to read...1 day 1 hour ago
Two feature interviews in this week's show!6 days 22 hours ago
Palo Alto... Oh the mirth... the MIRTH...6 days 22 hours ago
Oh, and the other stuff no one is talking about that could get absolutely everything owned...2 weeks 23 hours ago