Categories
YesWeHack News

Datavisualisation : la Crowdsecurity en Europe par YesWeHack

2017 a été une année importante pour YesWeHack, notamment en ce qui concerne le Bug Bounty.

Vous trouverez ci-dessous une infographie qui reprend des données clés tirées de notre plateforme de Bug Bounty durant l’année passée.

En tant que 1re plateforme de Bug Bounty en Europe, c’est la première fois que des chiffres sont publiés.

Nous sommes fiers de vous annoncer que la communauté d’experts YesWeHack se compose à 67% d’Européens.

En 2017, grâce à notre communauté d’experts,  plus de 2000 bugs ont été remontés dont 40% étaient considérés comme critiques avec un score CVSS supérieur ou égal à 7.

Categories
YesWeHack News

YesWeHack ouvre des bureaux à Rennes et contribue à l’écosystème cybersec en Bretagne

Depuis 2013, YesWeHack n’a cessé de croître et se renforce aujourd’hui avec de nouveaux locaux, au sein de la pépinière numérique à Cesson-Sévigné, en Bretagne, deuxième région « cybersec » après l’Ile-de France.

Le marché de la cybersécurité, particulièrement attractif, attire aussi bien une clientèle nationale qu’internationale. Afin de répondre aux attentes de cette clientèle exigeante, notre équipe s’agrandit et prend ses quartiers à la pépinière numérique à Cesson-Sévigné.

L’équipe YesWeHack bénéficie désormais de locaux dédiés où Romain LECOEUVRE (CTO), Laurent JOUANNIC (Business Development) et Nicolas DIAZ (Communication) auront un accès plus aisé pour coopérer et échanger avec les décideurs et les porteurs de projets bretons.

Categories
YesWeHack News

Le Réseau Thématique French Tech #Security #Privacy

Guillaume Vassault Houlière, CEO de YesWeHack, est un des ambassadeurs du Réseau Thématique French Tech #Security #Privacy .

Ce réseau a pour objectifs : d’organiser un Tour de France sur la thématique “security & privacy” afin de fédérer l’écosystème, de développer et valoriser à l’international le savoir-faire des acteurs français en matière de cybersécurité.

Ce tour permettra notamment de continuer la sensibilisation des utilisateurs en entreprise (PME, ETI et Grands Groupes) à la sécurité et à la protection des données personnelles. C’est là une des clefs de la réussite de la transformation numérique.

Une des missions principale du réseau est l’identification des startups axées sur la cyber-Securité et la protection des données personnelles. L’idée c’est de procéder à un inventaire des besoins et de motiver des entrepreneurs « emblématiques » pour qu’ils deviennent des business angels et/ou des mentors.

Enfin, le réseau et tous ses acteurs ont pour activité la promotion du fonds French Tech Accélération aux entrepreneurs pouvant réinvestir dans l’écosystème.

En savoir plus sur la feuille de route

Categories
YesWeHack News

Open Source, NGOs & Hackers : Unity is strength

YesWeHack is definitely a group of passionate people who all have become professionals. As passionate people, we do have principles and it is precisely these principles that keep us on the right path of our social, economic and financial development.

For some of you, you’ve been noticing that we are operating in a competitive world without forgetting our fundamentals.
We are willing to defend the common goods mainly the Internet neutrality, Press Freedom, Open Source (software & hardware).

To us, those 3 pillars – amongst others – are strong allies for Civil Society and especially for NGOs to defend and promote Human Rights.

This is the reason why we do care about helping NGOs and non-profit organizations who share the same principles.

Cooperation is good for all of us !

In 2017, our community of security researchers participated in 3 bug bounty programs powered by our YesWeHack Bug Bounty Platform :

In june 2017, the first program was launched by OCCRP and it exposed one tool of the organization : VIS.OCCRP.org

As a matter of fact, OCCRP is involved in the original Panama Papers, Paradise Papers amongst many other projects.

Categories
Best Practices YesWeHack News

Cybersecurity & Bug Bounty: Attack is the best form of defence

By Guillaume Vassault-Houlière | CEO of YesWeHack

Through our European platform YesWeHack.com, Bug Bounty is gaining respectability in France and Europe.

Bug Bounty is an innovative and operational practice from the United States that rewards security experts who find security flaws in IT systems.

Within a complex geopolitical context, Europe and France can compete in defending a European model of digital sovereignty.

In the light of new threats and given reports of organizations that are victims of piracy and irreversible damage, some innovative cyber security policies and approaches need to be adopted.

Cybersecurity is a powerful ally for leading digital transformation.

Categories
YesWeHack News

YesWeHack is now member of FNTC’s business incubator

YesWeHack is now an official member of FNTC (The Federation of the Digital Trusted Third Parties) ‘s business incubator.

We, YesWeHack, were used to mentioning during our conferences the real need for building trust for our Bug bounty platform namely YesWeHack and this membership is a milestone for our company.

The FNTC Board met in December to validate our application to its business incubator.

Thanks to the FNTC Board for having accepted us in its business incubator.

Categories
Events YesWeHack News

YesWeHack winner of the Jury’s Favorite Prize #FIC2017

YesWeHack Team is honored to have received the #FIC2017 Jury’s Favorite Prize

This Jury’s Favorite Prize proves that our products meet the challenges of today: the hiring of talents and the need for agile security. This award will allow us to strengthen our leadership in France and above all to boost us to conquer the Euro zone, that is our priority for 2017 !

Guillaume Vassault-Houlière, Yeswehack CEO

brad_pit

Congratulations to the winners :

  • Prove & Run
  • GateWatcher 

We do thank all members of the Jury

  • François Lavaste, Président CyberSecurity, Airbus Defence and Space
  • Alain Bouillé, RSSI, Caisse des Dépôts et Président du CESIN (Club des experts de la sécurité de l’information et du numérique)
  • Gilles Daguet, General Partner, ACE Management
  • Thierry Delville, Inspecteur général de la Police nationale, Délégation ministérielle aux industries de sécurité
  • Laurent Dumas Crouzillac, Associé, CapHorn Invest
  • Thomas Fillaud, Chef de bureau, Politique industrielle et Assistance (PSS), ANSSI
  • Philippe Gaillard, Associé, CyberD Capital
  • Joseph Graceffa, R&D-SSI, CLUSIR Nord de France
  • Jacques Hébrard, Commandant, Région gendarmerie Hauts de France
  • Geoffroy Hermann, Chef du bureau Réseaux & Sécurité, DGE
  • Jacques-Benoît Le Bris, DSI, Solvay
  • Olivier Ligneul, RSSI, Groupe EDF
  • Thierry Olivier, RSSI, Société Générale
  • Frédéric Valette, Responsable du pôle SSI, Direction générale de l’armement, Ministère de la Défense
  • Yves Veret, Senior Advisor Sécurité Numérique & Technologie de l’information CALAO Finance

***

For those who do not know the FIC aka International Cybersecurity Forum (Hosted in Lille – France)

The International Cybersecurity Forum is a platform aiming at promoting a pan-european vision of cybersecurity as well as to strengthen the fight against cybercrime.

In order to do so, the FIC relies on :

• The trade show, to share knowledge and ideas, recruit new employees and maintain contacts
• The forum, to discuss and debate with experts, to gather ideas and to share professional lessons
• The Observatory, to continue exchanging views and information after the FIC, to explore topics in greater depth and to consolidate our network of experts and like minded throughout the year

***

See you soon #FIC2017 !

 

Categories
YesWeHack News

YesWeHack : the first European platform for Bug Bounty

Computer security is a strategic challenge for all organizations and companies. Carrying out an inventory is essential to have an overall view of the situation. Security audits should be performed regularly and the costs are high.

Bug Bounty Programs allow companies to outsource seeking vulnerabilities by collecting a significant number of security breakdowns that will be reproduced and analyzed. This does improve the code, preventing from new risks.

With a good Bug Bounty program, a company can continuously check the security of its site or its applications. Hundreds of experts will test sites, and be rewarded (financial or else).

Submit your site to a Bug Bounty program is affordable. You can communicate about its security, also be proactive and reactive in case of vulnerabilities.

By participating in Bug Bounties, security researchers apply their knowledge legally, are paid, enrich their network and enhance their expertise YesWeHack launches the first European platform for Bug Bounty : YesWeHack.com.

YesWeHack.com is an easy way to secure your platforms.

To create their own Bug Bounty program, the startups, the large enterprise groups or the project holders have to register on our platform. They have to define a scope, a reward and whether it will be private or public.

Security researchers that are registered on YesWeHack.com then take note of the bug bounty program’s details.

When one of the hunters find a bug inside the scope, it shall have to be validated by the bug bounty initiator. Once recognized, the hunter will instantly be rewarded and credited skill points that would highlight him on Yeswehack.


About YesWeHack :

YesWeHack, launched in 2013, connect organizations or projects with IT security needs with qualified people.

Three interrelated platforms are available :

YesWeHack Jobboard : the first job site specializing in computer security.

YesWeHack Bug Bounty Platform : first European platform for Bug Bounties

FireBounty : Bug Bounties aggregator.