Head of Trust and Security at Bugcrowd Jason Haddix joins penetration tester and OWASP IoT author Daniel Miessler to discuss their time walking the floor at CES 2017. From automotive tech to bots, listen to this podcast to hear about top CES trends seen through a security lens.

Join Jason Haddix, Bugcrowd's Head of Trust, and AppSec industry leader, for a mini podcast series on big bugs. Throughout this series, Haddix will review some of the most noteworthy security vulnerabilities the industry has seen, including bugs received through the Bugcrowd platform.

During these 30 minute podcasts, Haddix will talk about a new big bug (or group of related big bugs), how it was found, what the technical and business impact were, and how development and security teams can avoid making the same mistakes.

Back in January we interviewed Justin "Juken" Kennedy at ShmooCon 2016. Justin shares how he got into security, his experiences with bug bounties, and his work with private bug bounties.

Follow Justin here: https://twitter.com/jstnkndy

Learn more about Bugcrowd's hackers here: https://bugcrowd.com/hackers

Over the past 10+ years, Cross-Site Scripting has made its way into just about every ‘top-ten vulnerability’ list and has consistently starred in headlines and POCs. XSS vulnerabilities are also commonly submitted through bug bounty programs, and many write them off as ‘low hanging fruit.’ We’re here to tell you that not all XSS are created equal.

In this podcast, Haddix will…

-Provide technical and historical context around ‘XSS-fatigue’

-Address what makes XSS unique and the general instances in which it can be particularly impactful

-Review specific XSS bugs submitted through bounty programs, how they were discovered, and the potential impact of those vulnerabilities

Get full resources and references for this episode here: COMING SOON.

Over the past weeks, Pokemon Go has taken the world by storm surpassing every projected number for both player base and revenue that a mobile game can. In episode 4 of Big Bugs, Jason Haddix takes listeners on a parallel story of how the hacking scene found ways to reverse engineer the world’s largest game, in epic time.

Subscribe to our Podcast RSS Feed: http://bgcd.co/bcpodcastrss

With new technologies and higher stakes, many innovative retail and loss prevention solutions need to make sure they can stand up against hackers. Digital Safety (DiSa), a retail loss prevention technology out of Phoenix, Arizona works with the biggest retailers in the country, and needed to be sure that their solution couldn’t be hacked. With a ‘winner-takes-all' bounty program, Bugcrowd proved that it could...

Sr. Community Manager of Bugcrowd, Sam Houston, chats with Frans Rosen, hacker and founder of Swedish cybersecurity company, Detectify. In this hour long interview podcast, the two discuss the hacker community, the value of the crowd, and the nuances involved with harnessing its' power. With anecdotes, tips and tricks, learn how to better connect with the hacker community, or how to just up your game.

Episode 2 of our big bug podcast series explores recently popularized and widespread vulnerability ImageTragick. Learn about

the incredible breadth of this vulnerability and the potential for it to be exploited, and how Bugcrowd was able to proactively enlist the crowd to search all public programs for this vulnerability before any scanner could.

Episode 1 of the 'Big Bugs' series with Jason Haddix explores noteworthy bugs found in cars, as well as the de-facto resources for anyone looking to get into car hacking or defending car systems.

Follow Jason on Twitter: https://twitter.com/jhaddix

Follow Bugcrowd on Twitter: https://twitter.com/Bugcrowd

Bugcrowd's Senior Community Manager, Sam Houston, chats with Jack Whitton about his experience with Bug Bounties and his approach to targets, how he got started, and the suggestions he has for other bounty hunters.

Learn more about Bugcrowd: https://bugcrowd.com/join-the-crowd

Follow Jack on Twitter: https://twitter.com/fin1te

Jack's Blog: https://fin1te.net/

Follow Bugcrowd on Twitter: https://twitter.com/bugcrowd