Arkose Labs Launches Private Bug Bounty Program

Monday, July 29, 2019

Ionut Arghire

Fa42af438e58b799189dd26386f5870f

Fraud prevention technology provider Arkose Labs announced the launch of a private bug bounty program on crowdsourced security platform Bugcrowd.

Based in San Francisco, Calif., the company leveragesglobal telemetry with a proprietary challenge–response mechanism to help organizations prevent fraud in sectors such as online marketplaces, travel, banking, social media, ticketing and online gaming. 

A public bug bounty program that Arkose Labs launched on Bugcrowd last year has improved development process with the inclusion of crowdsourced cybersecurity testing as an additional validation step, the company says.

With the new private program, the company wants to tap into the skill sets of Bugcrowd’s Elite Crowd and tailor testing to help eliminate account takeover attacks, fake user registrations, and other types of fraud and application abuse.

The new program will also allow the company to have a more direct communication with a smaller group of testers and gain more control over testing, while continuing to benefit from the crowdsourced model.

“As a security company in the fraud prevention space with an end-user facing product, we are lucrative targets for a wide range of attackers using innovative methods, such as Single Request Attacks. Compromising our proprietary challenge—response mechanism, Enforcement, requires a very specific skill set and partnering with Bugcrowd ensures we have a more informed path forward to stay ahead of attackers,” said Anna Westelius, senior director of engineering at Arkose Labs.

RelatedGoogle Increases Bug Bounty Program Rewards

RelatedMicrosoft Launches Bug Bounty Program for Dynamics 365

RelatedSingapore Government Announces Third Bug Bounty Program

63859
Post Rating I Like this!
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.