Bugcrowd

That’s a wrap on #Infosec2026! Same time next year? ✈️ 🎊

☁️ Cloud-native culture is about speed, learning, and adaptability. But the faster teams ship, the more important it becomes to continuously test what could break. Writing for CloudTech, Marc Zottner explores how organizations can build high-performing teams by moving beyond rigid processes so teams can reduce bottlenecks and learn faster. Read more: https://lnkd.in/gR-taSc9

Security teams are playing with a shorter clock ⏰🏒 AI is speeding up the path from discovery to exploitation. Bugs are being found faster. Exploits are moving faster. The window to respond is getting smaller. Bugcrowd recently sponsored Black Hat’s webinar, The Changing Face of Bug Hunting, featuring ☁️ Trey Ford 🎙️ Watch the full discussion to see why security teams need a faster game plan: https://lnkd.in/grU345Ad

This could turn into a big debate but…

The 19-year streak of stolen passwords as hackers’ top entry point is over 🙅 ‼️ Verizon’s new DBIR reveals software vulnerabilities are now the leading root cause of global breaches. Bugcrowd’s Trey Ford says AI has compressed the window between published vulnerability and active exploit from months to hours. See what this means for your risk strategy on The Brew News: https://lnkd.in/gy7jwyfe

Attackers love an unchecked assumption. In FinTech’s extended enterprise, every product, partner, and system adds another place trust can fail. 🔔 Test early, validate continuously, and close the gaps before attackers get there. 🎙️ Jaye Tillson CTO Security Hewlett Packard Enterprise 🎙️ ☁️ Trey Ford CSTO Bugcrowd 🎙️ Pranav Vattaparambil CSO Unosecur

For 19 years, stolen credentials were the top way attackers got in. That streak is over. 🚨 The 2026 Verizon DBIR shows vulnerability exploitation has taken the lead, now accounting for 31% of breach entry points. At the same time, AI is shrinking CVE-to-exploit timelines from months to hours. This matters because annual testing and quarterly assessments were built for a slower world. ☁️ Trey Ford breaks down what this shift means for security teams, third-party risk, shadow AI, and the growing need for continuous adversarial coverage ⤵ https://lnkd.in/gztUyMqw

Great day yesterday at Bugcrowd’s Hive event at InfoSec Europe. Thank you to Dr. Ali Al-Sherbaz from the University of Cambridge for moderating a panel with Dr. David Brumley and me about the impact of AI on vulnerability detection, how defenders are adapting and what we’re seeing from threat actors.

Day 2 at #Infosec2026 was absolute 🔥 THANK YOU to everyone who joined the booth conversations at A76 and came through The Hive. The security world is elite 😎 We heard from our CEO, Dave Gerry, and our Chief AI and Science Officer, David Brumley, moderated by the one and only Ali Al-Sherbaz, Academic Director for Digital Skills at the University of Cambridge (Yup, cool.) 👏 But the fun didn’t stop there. Julian Brownlow Davies, Sr. VP of Offensive Security & Strategy, and Alistair G., Director of Red Team Operations, kept the party going with a discussion around the AI slop era. P.S. Did you hear? 👀 If you missed #TheHive today, you can watch the speaker sessions whenever, wherever on our YouTube: https://lnkd.in/gQ3sKW7n

European data stays in Europe. But your security program doesn’t have to stay small 🤌 Bugcrowd’s EU Data Residency Option gives European and EU-focused organizations more control over sensitive vulnerability data and PII, while still giving them access to our global Crowd. Kevin Kersley breaks down what that means for teams under pressure to meet regional requirements and reduce risk faster. Read the Q&A: https://lnkd.in/gnFX6BqA