Name: Live Bug Bounty event with Decathlon
Uploaded: 2022-06-20T07:07:31.000Z
Duration: 2 min 10 s
Description: YesWeHack Live Bug Bounty event with Decathlon

Help Desk

Web and Video Conferencing

Customer Support

Innovation Management

Development

Admissions and Enrollment

Career Center

K-12 Online Learning

Education

Audit

Business Intelligence (BI)

Collaboration

Office Suites

Procurement

Smart Spaces

Transportation & Logistics

Enterprise

Accounting

Expense Management

Finance and Accounting

Applicant Tracking

Corporate Learning Management

HR Management

International Payroll

Payroll

Talent Intelligence

Talent Management

Workforce Analytics

Workforce Management

Human Resources

Cloud Storage

Complex Event Processing

Component Content Management

Data Pipeline

Data Virtualization

Digital Experience Monitoring (DEM)

Disaster Recovery

Fraud Detection

Hosted Virtual Desktop

Integration Platform as a Service (iPaaS)

Internet of Things (IoT)

Network Performance Monitoring

Remote Desktop

SSL Certificate

SaaS Backup

Server Virtualization

Software Defined Networking (SDN)

Vulnerability Management

Information Technology

A/B Testing

Ad Serving & Retargeting

All-in-One Marketing

Call Tracking

Contact Management

Content Management

Customer Experience Management

Email Marketing

Identity Resolution

Intent Data

Marketing Automation

Marketing OS

Product Management

Referral Marketing

Social Media Management

Survey & Forms Building

Virtual Event

Web Analytics

Marketing

Project Management

Professional Services

Construction CRM

Customer Relationship Management (CRM)

Field Sales Software

Proposal

Sales Coaching

Sales

Catering

Clinical Trial Management

Loan Servicing

Multiple Listing Service (MLS)

Nonprofit Advocacy

Retail Analytics

Retail Execution

Retail Management

Vertical-Specific

Find top rated software and services based on in-depth reviews from verified users. 400+ software categories including PaaS, NoSQL, BI, HR, and more.

HackerOne

Intigriti

Open Bug Bounty

Com Olho

Bugbounter

Bugcrowd

SafeHats

InstaSafe

Hackrate

HackenProof

Atlassian Jira

GitLab

GitHub

YesWeHack

Bug bounty platforms are software used to deploy bug bounty programs. A bug bounty program is a deal or reward offered for private individuals who manage to find bugs and vulnerabilities in web applications, effectively crowdsourcing flaw and vulnerability management.

Bug Bounty

YesWeHack Bug Bounty Platform Demonstration

a few public programs. These give the entire hunter community access to an organization's program to benefit from their diverse skills. YesWeHack Hunters can access all public programs of the platform.

the Report Lifecycle dashboard, used to track key operational metrics and benchmark data against industries, other programs, country averages, or even the overall platform average - to improve an organization's security posture.

the Business Unit Manager dashboard, used to track the performance of programs with a of display real-time metrics.

a Bug Timeline dashboad, used to analyze the timeline to understand trends in reported bugs over time, grouped by severity level.

a leaderboard. Here, organizations can earn ranking points by submitting vulnerability reports, based on the severity of the issue and the applicable reward grid.

YesWeHack is a leading Offensive Security and Exposure Management 
platform delivering integrated, API-based solutions to secure 
organisations’ growing attack surfaces. Its human-in-the-loop model 
combines Bug Bounty (leveraging a global community of 135,000+ skilled 
ethical hackers), Autonomous Pentesting, Continuous Pentesting and 
unified vulnerability management to deliver agile, exhaustive security 
testing at scale. Customers include Louis Vuitton, Ferrero, the European
 Commission, Tencent and L’Oréal Groupe. ISO 27001-certified, 
CREST-accredited, and EU-hosted with full GDPR compliance.

YesWeHack Pentest Management Solution (PTM)

YesWeHack Vulnerability Disclosure Policy (VDP)

YesWeHack Attack Surface Management (ASM)

What is a Vulnerability Disclosure Policy (VDP)?

Every business needs a Vulnerability Disclosure Policy. Yes, you do, too. 
A VDP provides a legally secure, structured framework for reporting vulnerabilities on a company's website, products or services. It ensures that those who report vulnerabilities are legally protected. In addition, a VDP showcases companies' commitment to security, by welcoming external examination - a reassuring gesture for partners and customers who value security.

YesWehack helps you build your own by providing you with a complete solution. YesWeHack provides its vast experience in working with ethical hackers, managing security vulnerabilities and its ISO 27001 certified infrastructure, and offers support in the following steps:

• Support in drafting the Policy’s text and commitments 
• Support in creating the customer's VDP webpages, integrated into his domain  
• Provision of a secure online reporting form for vulnerability reporting 
• Secure encryption of reports in the browser via PGP encryption
• Traceability of submitted reports by anchoring the proof of deposit in a blockchain
• Optional: triaging received reports

Founded in 2013, YesWeHack is a global Bug Bounty & VDP Platform. 
YesWeHack offers companies an innovative approach to cybersecurity with Bug Bounty (pay-per-vulnerability discovered), connecting more than 18 000 cyber-security experts (ethical hackers) across 120 countries with organisations to secure their exposed scopes and reporting vulnerabilities in their websites, mobile apps, infrastructure and connected devices.
YesWeHack runs private (invitation based only) programs, public programs and vulnerability disclosure policies (VDP) for hundreds of organisations worldwide in compliance with the strictest European regulations.

More details on www.yeswehack.com
#BugBounty #VDP #VulnerabilityDisclosurePolicy #ResponsibleDisclosure #security #crowdsourcedsecurity

YesWeHack Customer Story: L'Oréal, world’s largest cosmetics and personal care brand

Learn about L'Oréal’s four-year Bug Bounty journey with YesWeHack so far.

Watch Jean-Jacques Mallet, Group Cybersecurity Director at L’Oréal, and Guillaume Kermarrec, in charge of the Bug Bounty Program and threat/vulnerability management at the world’s largest cosmetics and personal care company.

The pair discuss L'Oréal’s security culture, the motivations for starting up a Bug Bounty Program, the benefits observed so far, how the program has grown and been fine-tuned, and their advice for maximising your return on investment in crowdsourced security. 

The interview was filmed during leHACK conference in Paris in July 2024. L’Oréal provided the targets for a successful YesWeHack Live Bug Bounty at the event:  https://www.yeswehack.com/news/loreal-live-hacking-event-lehack

00:20 Can you please introduce L'Oréal Groupe?
00:41 How important is cybersecurity to L'Oréal?
01:22 Why did you launch a Bug Bounty Program?
02:17 What are the benefits of Bug Bounty?
02:45 How has your Bug Bounty Program evolved since the beginning?
03:27 What are the key factors for a successful Bug Bounty Program?
04:01 Anything to add?

Introduction to Bug Bounty

Bug Bounty takes penetration testing into a new dimension. The user invites ethical hackers to surface vulnerabilities according to strictly defined rules. And if they find a bug, they receive a reward.

Introduction to Bug Bounty - YesWeHack

Security professionals lack effective solutions to bridge the gap between modern IT and security.
Bug Bounty was born to fill this gap.

Bug Bounty takes penetration testing into an exciting new dimension. You invite ethical hackers to surface vulnerabilities according to strictly defined rules. And if they find a bug, they receive a reward. It’s that simple.

Organisations of all sizes and industries are rapidly adopting Bug Bounty. 
So, what are you waiting for ? 
Visit www.yeswehack.com 

0:00 Introduction 
00:53 Bug Bounty benefits
02:00 How a Bug Bounty program works? 
03:09 Why YesWeHack?

About YesWeHack 
Founded in 2015, YesWeHack is a Global Bug Bounty & VDP Platform. 
YesWeHack offers companies an innovative approach to cybersecurity with Bug Bounty (pay-per-vulnerability discovered), connecting more than 25,000 cybersecurity experts (ethical hackers) across 170 countries with organizations to secure their exposed scopes and reporting vulnerabilities in their websites, mobile apps, infrastructure and connected devices.

YesWeHack runs private (invitation based only) programs and public programs for hundreds of organisations worldwide in compliance with the strictest European regulations. 

In addition to the Bug Bounty platform, YesWeHack also offers: support in creating a Vulnerability Disclosure Policy (VDP), a learning platform for ethical hackers called Dojo and a training platform for educational institutions, YesWeHackEDU.

More infos: https://www.yeswehack.com

YesWeHack Customer Story: Ferrero, Italy's sweet-packaged food giant

Discover how Ferrero, a global leader in sweet-packaged foods, is scaling its Bug Bounty program – from just a few hunters initially to an ambitious target of 200 by the end of 2024.

In this exclusive interview, Vittorio Addeo, Global Head of Offensive Security & the Red Team, and Giulio Maria Gravante, Cyber Offence Project Manager, share their journey, challenges, and key success factors in adopting the Bug Bounty model. Learn how Ferrero leverages ethical hacking to strengthen its cybersecurity strategy.

This conversation was filmed during the RomHack conference in Rome in September 2024, where Ferrero and YesWeHack hosted Italy's first-ever Live Hacking Event. Curious about the results? Check out the event leaderboard here: https://event.yeswehack.com/events/romhack-2024 

00:19 Could you please tell us about Ferrero?
00:34 Why did you launch a Bug Bounty Program and how has it evolved over time?
01:05 What are the main challenges you have faced so far and how have you overcome them?
01:37 What are the most notable benefits of Bug Bounty?
02:15 What are the key factors for a successful Bug Bounty Program?
02:53 Anything else to add?

Banco Galicia x YesWeHack: Live Bug Bounty highlights from Ekoparty, Argentina

Watch highlights from a recent YesWeHack live hacking event in Buenos Aires, where security researchers probed digital assets belonging to Banco Galicia for vulnerabilities.

The event took place at Ekoparty, the annual computer security conference, on 14-15 November 2024. Anyone attending Ekoparty could participate and hunt for bugs in pursuit of points, a lofty place on the leaderboard and financial rewards tiered by the severity of their findings.

YesWeHack is a global bug bounty and vulnerability management platform. Banco Galicia, which was founded in 1905, is a private Argentinian bank and one of the largest financial service providers in the country.

A big thank you to Banco Galicia, Ekoparty and Bug Bounty Argentina for their support and participation in making this event a resounding success. 🙏

The final leaderboard: https://event.yeswehack.com/events/ekoparty-2024

#LiveHackingEvent #LiveBugBounty #EthicalHacking #Cybersecurity #Ekoparty2024

Hack Me I’m Famous #2 – Live Hacking Event with Louis Vuitton

On April 4-5, YesWeHack had the absolute pleasure of hosting the second edition of Hack Me I’m Famous with no other than the prestigious luxury brand Louis Vuitton.

Held at Louis Vuitton's Parisian headquarters, the live hacking event brought together forty of Europe's most skilled hackers for an exclusive two-day session dedicated to uncovering vulnerabilities in the luxury group's information systems.

The final leaderboard is available here: https://event.yeswehack.com/events/hack-me-im-famous-2

#BugBounty #LiveBugBounty #LiveHackingEvent #LHE #HMIF2 #EthicalHacking #Cybersecurity

YesWeHack Live Bug Bounty event with Decathlon

Live Bug Bounty event with Decathlon

As every year, YesWeHack, the global Bug Bounty & VDP platform, organised a Live Bug Bounty during the International Cybersecurity Forum, held in Lille, France. This year, it was Decathlon‘s — the giant sports and entertainment retailer —  turn to participate in these two days of intensive hacking!

More information on Decathlon's crodwsourced security strategy and their experience with the Live Bug Bounty in this article:https://blog.yeswehack.com/customer-stories/back-to-decathlons-live-bug-bounty/

#bugbounty #cybersecurity #ethicalhacking #livehacking #livebugbounty #ethical_hacker

TrustRadius is a technology and business research firm based in Austin, Texas. The company is known as a review platform for verified B2B technology and software reviews through a proprietary algorithm and human verification.

YesWeHack

Overview

What is YesWeHack?