Bugcrowd Unveils Persistent Assault Surface Penetration Testing Solution
In the ever-evolving digital landscape, organizations are constantly faced with the challenge of protecting their expanding and shifting attack surfaces. Recognising this need, Bugcrowd, a leading crowdsourced cybersecurity platform, has launched the Continuous Attack Surface Penetration Testing (CASPT) solution.
CASPT is a unique offering tailored for customers with an evolving attack surface. Traditionally, many organizations perform penetration testing only once or twice a year. However, CASPT is designed to address this gap, providing proactive security measures for organizations that require continuous monitoring and testing.
The development of CASPT can be attributed to Bugcrowd's recent acquisition of Informer, a move that has enabled the integration of External Asset Management (EASM) data into the Bugcrowd platform. This integration is a significant milestone in Bugcrowd's journey, as it combines asset data from EASM with Bugcrowd's vulnerability information, offering a comprehensive view of an organization's digital assets.
The importance of CASPT is underscored by the fact that nearly 70% of organizations have been compromised through an unknown or poorly managed asset. CASPT allows users to run a baseline test and share incremental changes about new and updated assets or threats with a curated team for testing as soon as changes are detected.
Bugcrowd customers with managed bug bounty engagements can also update the scope for new and updated assets. This feature enables organizations to initiate a new pentest or bug bounty engagement for specific assets from their EASM dashboards, providing a high level of assurance for meeting compliance and risk reduction goals.
Adversaries often know more about their attack surface than its defenders do. CASPT aims to help organizations understand ongoing risk across all digital assets in motion before attackers can exploit them. By providing a proactive security approach, CASPT is intended to help customers meet compliance goals and reduce external risk asset exposure.
Bugcrowd's long-term vision is to provide customers with proactive, data-driven insights about their attack surface. By empowering hackers on its platform to acquire more skills and earn more rewards, Bugcrowd is fostering a community that is dedicated to enhancing cybersecurity for all.
In a world where attack surfaces are not static and are constantly expanding and shifting, CASPT offers a beacon of hope for organizations seeking to stay one step ahead of cyber threats. With CASPT, Bugcrowd is redefining the boundaries of cybersecurity, offering a solution that is not just reactive, but proactive.
