Risky Business #268 -- Outsource your bug bounty program?
This week's feature interview is with Casey Ellis of BugCrowd.com -- a new business that runs outsourced bug bounty programs. It's a great idea and it's one that I personally think will really take off over the next couple of years.
This week's show is brought to you by our good friends at Adobe.
Adobe's director of product security and privacy Brad Arkin will be along a bit later on with an update on the phantom 0day issue the company experienced last year, as well as filling us in on some efforts designed to combat spearphishing attacks that use dodgy Flash objects embedded in Office files. It's more interesting than it sounds!
Adam Boileau is back in the news seat for a chat about recent headlines. You can find links to all the articles we discussed here.
PLUS Security at scale, risks to bug bounties...21 hours 7 min ago
So much crypto in the news these days...21 hours 21 min ago
P1 Security (and Qualys) founder Philippe Langlois talks SIM key haxx...1 week 21 hours ago
Dramatic fails FTW!1 week 21 hours ago
New compile-time tricks, split TLB tricks and MOAR...2 weeks 4 hours ago