{"id":20310,"date":"2022-02-09T01:00:00","date_gmt":"2022-02-09T01:00:00","guid":{"rendered":"https:\/\/eodishasamachar.com\/en\/2022\/02\/09\/demand-for-crowdsourced-security-booms-yeswehack-bug-bounty-platform-continues-to-thrive\/"},"modified":"2022-02-09T01:00:00","modified_gmt":"2022-02-09T01:00:00","slug":"demand-for-crowdsourced-security-booms-yeswehack-bug-bounty-platform-continues-to-thrive","status":"publish","type":"post","link":"https:\/\/eodishasamachar.com\/en\/2022\/02\/09\/demand-for-crowdsourced-security-booms-yeswehack-bug-bounty-platform-continues-to-thrive\/","title":{"rendered":"Demand for crowdsourced security booms: YesWeHack bug bounty platform continues to thrive"},"content":{"rendered":"

\n<\/p>\n

\n

PARIS, FRANCE and SINGAPORE –\u00a0Media OutReach<\/a>\u00a0–\u00a09
\nFebruary 2022\u00a0–\u00a0<\/b>YesWeHack, Europe’s leading Bug
\nBounty platform, today announced strong growth, with its annual revenue more
\nthan doubling globally. In Asia, YesWeHack revenue grew by a substantial 200%.<\/p>\n

YesWeHack’s
\ncommunity of ethical hackers has grown by 75%, with over 35,000 hackers now
\noperating on the platform. On average, 1,200 to 1,300 researchers join
\nYesWeHack each month. This ever-growing popularity confirms it as the preferred
\nplatform for ethical hackers looking for Bug Bounty programs.<\/p>\n

It
\nwas also a successful year for international expansion, with YesWeHack
\nestablishing META presence and helping businesses in over 40 countries to
\nimprove their security posture across the globe.<\/p>\n

Vulnerability minefield<\/b><\/p>\n

The past 12
\nmonths saw a record-breaking year for vulnerabilities. YesWeHack noted a
\ndoubling in the number of bugs identified by its hackers. Of these, 35% were
\nconsidered ‘critical’ or ‘high’, meaning many business systems and applications
\ncould have been severely impacted if these bugs were not found and remedied.<\/p>\n

The increasing number and impact
\nof vulnerabilities discovered in 2021 such as SolarWind and Log4J has led
\ncompanies to intensify their investments in crowdsourced security. In 2021, the
\nonline aggregator FireBounty.com, created by YesWeHack, counted a total of
\nnearly 24,000 vulnerability disclosure policies.<\/p>\n

In terms of the type of
\nvulnerabilities detected, implementation and design flaws (Secure Design,
\nAccess Control) remain the leading type of bugs for the second year in a row.
\nThis trend can be explained by the increasing complexity of the applications
\ndeployed.<\/p>\n

Adoption by sector<\/b><\/p>\n

The adoption of Bug Bounty
\nprograms continues to grow across several industries with YesWeHack seeing a
\n100% increase in the number of active programs available on its platform.<\/p>\n

Unsurprisingly, technology
\ncontinues to be the most prominent sector for YesWeHack. It represents 44% of
\nall programs on the YesWeHack platform, up from 35% last year. This is followed
\nby the financial services and insurance sector, which accounted for 18% of all
\nBug Bounty programs on the platform in 2021.<\/p>\n

As the pandemic continues to
\ndisrupt the world, many other sectors have also accelerated their digital
\ntransformation journey to meet the changing needs of their users. This is
\nespecially relevant in the public sector, where many administrations and local
\nauthorities are continuing to digitise their services and have therefore
\nlaunched Bug Bounty programs to protect their data.<\/p>\n

Record year for rewards<\/b><\/p>\n

Alongside the increase in programs
\non its platform, YesWeHack has seen a 140% year-on-year growth in the total
\namount of rewards paid out to hackers.<\/p>\n

In 2021, the largest payout
\namounted to \u20ac40,000. Last year also saw YesWeHack release the Swiss Post e-voting public bug bounty program,
\noffering the platform’s largest ever reward available to its hacker community
\nat \u20ac230,000. <\/p>\n

One of the reasons for YesWeHack’s
\ngrowing popularity, among ethical hackers and customers alike, is its ongoing
\ncommitment to the smooth running and quality of its programs. For example, in
\n2021, 78% of vulnerabilities were rewarded within 24 hours of being accepted,
\nwhile 89% were paid within 28 days of submission and 60% of vulnerabilities
\nwere remediated within a month.<\/p>\n

Crowdsourced security will continue to grow <\/b><\/p>\n

Romain Lecoeuvre, CTO and
\nco-founder of YesWeHack, warns that the acceleration of digitalisation induced
\nby the pandemic should not lead companies to relax their security efforts.
\n“Many developers are under pressure to deliver applications as quickly as
\npossible in order to maintain or gain a competitive advantage. As a result,
\nspeed is prioritised over security. For this reason, it is essential that
\ndevelopment and security teams work in tandem, with the help of ethical
\nhackers, to engage in a DevSecOps-like approach.”<\/p>\n

Guillaume Vassault-Houli\u00e8re, CEO
\nand co-founder of YesWeHack, notes that crowdsourced security is a great way
\nfor companies to get into data privacy compliance. “Over the years, the
\ngeneral public has become more and more sensitive to how to protect their data.
\nIn the interests of transparency, many organisations are now working with
\nethical hackers to find vulnerabilities in their systems, and to provide
\nassurances to their users. Indeed, unauthorised access to personal data is one
\nof the main risks identified in the programs available on our platform and has
\ntraditionally offered the highest rewards. In this context, crowdsourced
\nsecurity is not only the most effective way to discover vulnerabilities in
\ncode, but also to reassure consumers about the security of a product or service
\nand the privacy of their data.” <\/p>\n<\/p><\/div>\n\n
Source link <\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

PARIS, FRANCE and SINGAPORE –\u00a0Media OutReach\u00a0–\u00a09 February 2022\u00a0–\u00a0YesWeHack, Europe’s leading Bug Bounty platform, today announced strong growth, with its annual revenue more than doubling globally. In Asia, YesWeHack revenue grew by a substantial 200%. YesWeHack’s community of ethical hackers has grown by 75%, with over 35,000 hackers now operating on the platform. On average, 1,200 …<\/p>\n","protected":false},"author":1,"featured_media":20311,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[60],"tags":[],"_links":{"self":[{"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/posts\/20310"}],"collection":[{"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/comments?post=20310"}],"version-history":[{"count":0,"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/posts\/20310\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/media\/20311"}],"wp:attachment":[{"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/media?parent=20310"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/categories?post=20310"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/eodishasamachar.com\/en\/wp-json\/wp\/v2\/tags?post=20310"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}