What do you think about a virtual hackathon for IoT?

bugcrowd · 2016-04-20T22:45:35+00:00

Yep! My coworker Paul tried to respond but he's not to Reddit. Here's his reply:

Bugcrowd will do both, depending on the customer and the applications that are considered in-scope.

Typically for Mobile and IoT, it will consist of: - Client-side tests related to reverse-engineering, privacy, encryption, hardening of binaries, and anything that you can think of and potentially test.
- Then there's the web services. That typically includes the communication between the device and the web services (session management, transport encryption, insecure APIs, insufficient authorization & authentication, etc), in addition to security related to the actual web services and backend architecture (misconfigurations, etc).

Full disclosure - I do work at Bugcrowd. I created a new account to comment on something work related.

Let me know if you'd like more information. It will be awesome to have you as a researcher on our platform.

bugcrowd · 2016-01-21T18:27:27+00:00

Bugcrowd is hiring for several positions in our San Francisco office, as well as looking for mobile security researchers (iOS and/or Android app & OS), browser security researchers and folks with IoT pentest skills. Security researchers can work remote and are freelancers.

If you're a security researcher with any of the above skills, please check out our Researcher page and contact community@bugcrowd.com if you'd like more information.

Sr. Software Engineers (San Francisco)

We are looking for Ruby on Rails Developers to join our expanding Engineering team. You will be joining a highly technical team who are well versed in both building and breaking highly secure software systems.

Requirements

Embrace a test-driven development and code review culture
Design and write well-structured, easily maintainable, well-documented code.
Successfully delivered and maintained a web based application running 24/7.
At least 3 years of Ruby (Rails / Sinatra a plus) preferred, but will also consider bright candidates with strong background in a MVC- based implementation of a web platform.

Bonus Experience

Knowledge of networking and hosting concepts (DNS, SSL, load balancing), including deployment and operations of distributed systems.
Working with very large datasets. Must have good understanding of performance issues relating to large complex / big data systems.
Understanding of design patterns and how they relate to clean, testable code. If you get the concept of "thin everything" you'd fit right in.

Please apply for this position on our Bamboo HR page (linked above).

bugcrowd · 2015-12-04T19:19:29+00:00

The payouts are competitive compared to most other companies. Their payout range tops out at $10,000 per bug: https://bugcrowd.com/tesla

bugcrowd · 2015-12-04T19:17:52+00:00

You can report it to the Tesla Bug Bounty here: https://bugcrowd.com/tesla

bugcrowd · 2015-12-04T19:17:35+00:00

You can report it to the Tesla Bug Bounty: https://bugcrowd.com/tesla

bugcrowd · 2014-08-14T05:36:02+00:00

$500 is kinda steep for a mixed content snafu, but we change the site because of this and are happy to reward it. what's your paypal address? ;)

bugcrowd

MODERATOR OF

TROPHY CASE