Backblaze Doubles Down on Security With Open Bug Bounty Program

Rhea-AI Summary

Backblaze (Nasdaq: BLZE) has publicly opened its Bugcrowd Bug Bounty Program to all security researchers. This initiative reflects Backblaze's commitment to enhancing cybersecurity, following its investments in security upgrades like server-side encryption for its B2 Cloud Storage API. The company has doubled its Security team over the past year under CISO Mark Potter's leadership. The program aims to identify and mitigate vulnerabilities by engaging ethical hackers, aligning with best practices in an evolving threat landscape.

Positive

• Public opening of Bugcrowd Bug Bounty Program enhances security engagement.
• Recent launch of server-side encryption for B2 Cloud Storage API.
• Doubling of Security team size over the past year.

Negative

• None.

Enhancing Security Testing, Backblaze’s Bugcrowd Bug Bounty Program Is Now Open to All Security Researchers

SAN MATEO, Calif., March 24, 2022 (GLOBE NEWSWIRE) -- Backblaze, Inc. (Nasdaq: BLZE), a leading independent storage cloud platform, announced today the public opening of its existing Bugcrowd Bug Bounty Program to all security researchers. Backblaze has consistently invested in maintaining and upgrading its security portfolio—including the recent launch of server-side encryption for its S3 Compatible API for B2 Cloud Storage and the doubling in size of its Security team over the last year under the leadership of CISO Mark Potter. Leveraging the security expertise of the ethical hacking community through Bugcrowd underscores the company's commitment to cybersecurity best practices aligned with the constantly evolving threat landscape.

“Backblaze continues to build out a world class Security team and we’re hardening our systems and processes against cybercriminals every day, but no business is entirely immune from vulnerabilities—as the recent Log4j issue made all too clear,” Mark Potter, Backblaze Chief Information Security Officer, noted. “That’s why we’re excited to broaden our security profile with Bugcrowd—they make it easy to engage and reward security researchers who can identify issues before they become bigger problems.”

Bugcrowd encourages ethical hackers to attack businesses, find vulnerabilities in their software and processes, and aid in guiding the remediation of those vulnerabilities before they can be exploited by anyone else. Backblaze’s private bug bounty program with Bugcrowd has been running for over a year, but now that the program is public, any interested security researcher can sign up to challenge the company’s in-scope products and networks by visiting https://www.bugcrowd.com/backblaze.

"We're very excited about Backblaze's adoption of a bug bounty solution on the Bugcrowd Security Knowledge Platform™ and benefit from the power of the human intellect of our global crowd," said Ashish Gupta, CEO, Bugcrowd. "Blackblaze joins a visionary group of companies that see continuous, proactive security testing as a critical requirement for keeping customer data, and IT infrastructure overall, safe from attack."

Backblaze will host a webinar on April 21, 2022 to discuss its expanded program and its role in the overall Backblaze security portfolio. The webinar panel will include key members of Backblaze’s Security team, including Lead Application Security Engineer, Ola Nordstrom, and Senior Risk Assessment Specialist, Chris Vickery, and will be moderated by Pat Patterson, Chief Developer Evangelist for Backblaze.

About Backblaze

Backblaze makes it astonishingly easy to store, use, and protect data. The Backblaze Storage Cloud provides a foundation for businesses, developers, IT professionals, and individuals to build applications, host content, manage media, back up and archive data, and more. With over two billion gigabytes of data storage under management, the company currently works with close to 500,000 customers in over 175 countries. Founded in 2007, the company is based in San Mateo, CA. For more information, please go to www.backblaze.com.

Press Contact:
Patrick Thomas
Head of Publishing, Backblaze
(patrick@backblaze.com)

FAQ

What is Backblaze's Bugcrowd Bug Bounty Program?

It is a program that allows security researchers to identify vulnerabilities in Backblaze's products for rewards.

When did Backblaze open its Bugcrowd Bug Bounty Program to all researchers?

Backblaze opened the program to all security researchers on March 24, 2022.

What steps has Backblaze taken to enhance cybersecurity?

Backblaze has launched server-side encryption and doubled its Security team size.

Who leads the Security team at Backblaze?

The Security team is led by CISO Mark Potter.

What is the significance of the Bugcrowd partnership for Backblaze?

The partnership allows for proactive security testing by engaging ethical hackers.