cje

@caseyjohnellis@infosec.exchange
1.9K Followers
636 Following
378 Posts
founder @Bugcrowd && co-founder @disclose_io || dad x 2, hacker, entrepreneur, executive, advisor || عصا موسى || #w00w00
Verified byhttps://fedified.com
Webhttps://cje.io
Twitterhttps://twitter.com/caseyjohnellis
LinkedInhttps://linkedin.com/in/caseyjohnellis
Blueskycaseyjohnellis.bsky.social
cjeSep 16, 2024
Unveiling TE.0 HTTP Request Smuggling: Discovering a Critical Vulnerability in Thousands of Google Cloud Websites by @sw33tlie @bsysop @_medusa_1_ | @Bugcrowd https://m.cje.io/4d9TWxA
Unveiling TE.0 HTTP Request Smuggling: Discovering a Critical Vulnerability in Thousands of Google Cloud Websites | @Bugcrowd

We later discovered we had a powerful exploit affecting thousands of Google Cloud-hosted websites that were using their Load Balancer.

Bugcrowd
cjeJun 16, 2024
“An attacker would be able to take control of the ICS/SCADA endpoint, effectively gaining physical access" #icssecurity #otsecurity #scada https://m.cje.io/3RqMBBG
Prevalence and Impact of Password Exposure Vulnerabilities in ICS/OT 

Analysis and insights on the prevalence and impact of password exposure vulnerabilities in ICS and other OT products.

SecurityWeek
cjeJun 14, 2024

Our panel from #rsac2024 is live... Enjoy!

"Bugs on a Plane: Implementing a Bug Bounty in an Airline IT/OT Environment"

https://buff.ly/3xdqfwF

Bugs on a Plane: Implementing a Bug Bounty in an Airline IT/OT Environment

YouTube
cjeApr 23, 2024

Builders and Breakers: Partnering for Secure Elections

"In September 2023, the IT-ISAC Elections Industry SIG launched a first-of-its kind pilot program in which #election technology providers gave security researchers access to modern voting technology"

Wanna know what happened next? Come see our panel at #rsac!

https://buff.ly/3w8lBzn
#protect2024 @Bugcrowd @disclose_io

cjeApr 17, 2024

Off the back of our long-standing partnership with foundational LLM providers, policy work with ONCD, the Whitehouse, and Hacking Policy Council, our R&D partnership with DoD Chief Digital and Artificial Intelligence Office and ConductorAI, and with the recent completion and release of SPM/OMAS on the #Crowdcontrol platform, I'm SUPER excited to see our latest offering off-the-leash - AI Bias Assessment.

Learn more here: https://buff.ly/3VX5i2Y

Introducing Bugcrowd AI Bias Assessments | @Bugcrowd

We’re excited to introduce the availability of AI Bias Assessments in the Bugcrowd Platform, helping organizations adopt LLM apps safely.

Bugcrowd
cjeApr 13, 2024

🚨 New #CIRCIA regulations are coming! Businesses linked to critical infrastructure sectors will soon need to report #cybersecurity incidents & ransomware payments to CISA. Comments open until June 3, 2024.

cc: @HarleyGeiger @venable
https://www.jdsupra.com/legalnews/circia-cyber-incident-reporting-for-3028680/

CIRCIA: Cyber Incident Reporting for Practically Everyone? | JD Supra

A sweeping array of businesses are another step closer to requirements to report cybersecurity incidents and ransomware payments to the federal...

JD Supra
cjeMar 4, 2024

IT’S CKO/SKO TIME!!!

cc: @davegerryjr @Bugcrowd

cjeFeb 16, 2024
“Over the past year, more than 200 new clients have joined the Bugcrowd Platform to leverage the collective ingenuity of the hacker community,” said CEO Dave Gerry. “This latest investment gives us the resources we need to continue to be the leading force in the crowdsourced security market.” https://news.crunchbase.com/cybersecurity/crowdsourced-hacker-platform-bugcrowd-fundraise/
Crowdsourced Security Startup Bugcrowd Locks Up $102M

Hackers-for-hire platform Bugcrowd locked up $102 million in fresh funding led by General Catalyst.

Crunchbase News
cjeFeb 16, 2024
"Australian venture capital funds and angel investors look set for a big win as locally founded cybersecurity tech firm Bugcrowd pulled in top-shelf US backers to close one of the largest funding rounds of the year so far at $US102 million ($156 million)" https://www.afr.com/technology/aussie-investors-count-the-cash-as-cyber-firm-bugcrowd-banks-156m-20240211-p5f40z
Bugcrowd: Aussie investors count cash after big funding round

An Aussie-founded start-up that relocated to the US has closed one of the year’s biggest funding rounds, which will make its early local backers even richer.

Australian Financial Review
cjeFeb 7, 2024
PATCH YO... TENDANCY TO REPOST AND COMMENT ON VULN CLICKBAIT W/O FACT CHECKING IT https://www.bleepingcomputer.com/news/security/no-3-million-electric-toothbrushes-were-not-used-in-a-ddos-attack/
No, 3 million electric toothbrushes were not used in a DDoS attack

A widely reported story that 3 million electric toothbrushes were hacked with malware to conduct distributed denial of service (DDoS) attacks is likely a hypothetical scenario instead of an actual attack.

BleepingComputer