Verizon Media on Attack Surface Visibility and Reducing Risk with HackerOne
Verizon Media is the media giant that owns a slew of dynamic brands including Yahoo, AOL, Tumblr, and TechCrunch that over 1 billion people love and trust. Cybersecurity is paramount in maintaining that trust. As part of that effort, their security team, cleverly dubbed the Paranoids, works with HackerOne to run a robust bug bounty program aimed at expanding security efforts and reducing the risk of a security incident.
Their team has received over 1,900 valid vulnerabilities through its HackerOne bug bounty program, over 300 of which were high or critical severity. They also paid over $5 million in bounties to hackers for their efforts in 2018. That’s nearly five times the bounties paid in 2017 and nearly 10 times the bounties paid by Verizon Media brands in 2016.
Watch this on demand webinar to learn:
- What the Paranoids at Verizon Media have learned about their attack surface through the HackerOne program
- Examples of 0day bugs and what it takes to fix them
- Why shallow reports can help eliminate broader risks
- How proactive engagement in the program impacts long term results