Fraud prevention technology provider Arkose Labs announced the launch of a private bug bounty program on crowdsourced security platform Bugcrowd.
Based in San Francisco, Calif., the company leveragesglobal telemetry with a proprietary challenge–response mechanism to help organizations prevent fraud in sectors such as online marketplaces, travel, banking, social media, ticketing and online gaming.
A public bug bounty program that Arkose Labs launched on Bugcrowd last year has improved development process with the inclusion of crowdsourced cybersecurity testing as an additional validation step, the company says.
With the new private program, the company wants to tap into the skill sets of Bugcrowd’s Elite Crowd and tailor testing to help eliminate account takeover attacks, fake user registrations, and other types of fraud and application abuse.
The new program will also allow the company to have a more direct communication with a smaller group of testers and gain more control over testing, while continuing to benefit from the crowdsourced model.
“As a security company in the fraud prevention space with an end-user facing product, we are lucrative targets for a wide range of attackers using innovative methods, such as Single Request Attacks. Compromising our proprietary challenge—response mechanism, Enforcement, requires a very specific skill set and partnering with Bugcrowd ensures we have a more informed path forward to stay ahead of attackers,” said Anna Westelius, senior director of engineering at Arkose Labs.
Source: infosec island