Bugcrowd is a organization tracked across 4 threat clusters and 3 intelligence report mentions on ThreatCluster. First observed November 20, 2025; most recent activity May 19, 2026.
Bugcrowd operates a crowdsourced security testing platform that connects researchers with organizations to find and responsibly disclose software vulnerabilities. It provides bug bounty programs, vulnerability disclosure workflows, and triage services, enabling scalable external security testing across many industries. This approach helps organizations identify weaknesses that internal teams may miss, reducing risk for enterprise customers.
A critical vulnerability (CVSS 9.7) in the Cline Kanban server allows any website a developer visits to silently exfiltrate workspace data and inject commands into the AI agent's terminal. This flaw affects version…
Bug bounty programs are facing a significant surge in low-quality AI-generated vulnerability reports, leading some companies to suspend their initiatives. Reports submitted through platforms like Bugcrowd have…
A significant supply chain attack has compromised Salesforce-stored data from more than 200 companies through applications published by Gainsight. Salesforce confirmed unauthorized access to customer data and is…
Hackers compromised Salesforce-stored data from more than 200 companies through a supply chain attack involving Gainsight applications. Google confirmed the breach, stating that unauthorized access to customer data was…