Download PDF version Contact company
Related Links

ConnectWise, the provider of intelligent software and expert services for technology solution providers (TSPs), announced it has launched a bug bounty program to supplement its own internal vulnerability management strategy boosting efforts to quickly identify and remediate bugs and security vulnerabilities in its software.

ConnectWise is partnering with HackerOne, the industry’s trusted hacker-powered security platform, to host the program.

A bug bounty program incentivises security research by offering monetary rewards for security vulnerabilities submitted. Accepting vulnerability reports from third parties helps organisations surface and resolve issues quickly, minimising the chance for exploitation.

ConnectWise Bug Bounty program

ConnectWise is committed to addressing all confirmed vulnerabilities discovered

The ConnectWise Bug Bounty program is private, meaning that it is open to invited hackers via the HackerOne platform. ConnectWise is committed to addressing all confirmed vulnerabilities discovered through the Bug Bounty program and will remediate and disclose issues commensurate with severity.

Responsible disclosures will continue to be delivered through the ConnectWise Trust Site, which is the primary source of information on a number of security, compliance and privacy topics. It also houses ConnectWise’s security bulletins and alerts, critical patches, and updates, with the ability to subscribe to proactive notifications via an RSS Feed.

Strengthen security standing

The launch of this Bug Bounty program is yet another important addition to our security arsenal"

Cyber criminals move fast, so we have to move faster. Employing a bug bounty program with the help of HackerOne, the industry leader in this space, will allow us to do just that by finding issues before bad actors get a chance to exploit them,” said Tom Greco, Director of Information Security, ConnectWise.

Crowdsourcing in this way represents a solid additional layer of security, and we clearly value the community’s expertise and participation in helping us keep our products secure. As we said earlier this year, the launch of this Bug Bounty program is yet another important addition to our security arsenal – and it’s the latest piece of our overall strategy to strengthen our own security standing so that we can better protect our partners and their SMB customers.”

Improving transparency and communication

The ConnectWise Bug Bounty program is an integral part of the company’s commitment and ongoing efforts to strengthen its own security posture as well that of its TSP partners, and to improve transparency and communication with its partners when it comes to cybersecurity.

To date, this has included an internal focus on “shift-left” product development, an expansion of cybersecurity training programs for TSP partners, and the creation of the MSP+ Cybersecurity Framework, the industry’s first global cybersecurity framework for MSPs.

Download PDF version Download PDF version

Related videos

Upgraded feature for Xesar - Now with smartphone as well!

Upgraded feature for Xesar - Now with smartphone as well!
Enhancing government security with proactive threat detection from Wavestore

Enhancing government security with proactive threat detection from Wavestore
Join the biggest hour for Earth

Join the biggest hour for Earth

In case you missed it

AMPELMANN GmbH enhances security with ASSA ABLOY eCLIQ solution
AMPELMANN GmbH enhances security with ASSA ABLOY eCLIQ solution

The Ampelmännchen (“little traffic light man”) from the former GDR is a cult figure around the globe. For tourists, the shops of AMPELMANN GmbH in Berlin are a big...

What are the unique challenges of the government market for security?
What are the unique challenges of the government market for security?

Factors such as stable demand and large contracts make the government market particularly enticing for security companies and professionals. However, entering and thriving in the g...

RapidSOS enables critical data sharing to improve emergency response
RapidSOS enables critical data sharing to improve emergency response

In an emergency, information is pivotal. More information provides better understanding of an emergency and empowers potentially life-saving decision-making. Emergency response tea...

Featured white papers
Honeywell GARD USB threat report 2024

Honeywell GARD USB threat report 2024

Download
The role of artificial intelligence to transform video imaging

The role of artificial intelligence to transform video imaging

Download
Access control system planning phase 1

Access control system planning phase 1

Download
Key Findings from the 2024 Thales Cloud Security Study

Key Findings from the 2024 Thales Cloud Security Study

Download
Bank security

Bank security

Download
Quick poll
Which feature is most important in a video surveillance system?
More corporate news
Scytáles AB appoints Geoff Slagle as the President and Chief Business Development Officer

Scytáles AB appoints Geoff Slagle as the President and Chief Business Development Officer
ADT Inc. announces investing into Percepta to further test and develop shoplifting deterrent technology

ADT Inc. announces investing into Percepta to further test and develop shoplifting deterrent technology
SecureBI and American Crime Prevention Institute announce online crime prevention training and certification courses

SecureBI and American Crime Prevention Institute announce online crime prevention training and certification courses
Featured products
Anviz iCam-B25: Versatile Surveillance Solution for Business and Public Safety

Anviz iCam-B25: Versatile Surveillance Solution for Business and Public Safety
Dahua's AI-powered Bullet WizMind Network Camera

Dahua's AI-powered Bullet WizMind Network Camera
Illustra Flex Gen4 AI-powered Dual Sensor Multi-directional camera

Illustra Flex Gen4 AI-powered Dual Sensor Multi-directional camera