Episode 12: JHaddix on Hacker->Hacker CISO, OG Hacking Techniques, and Crazy Reports
Critical Thinking - Bug Bounty Podcast
00:00
DoD Security Contracting - Butteau Bot, Inc.
I used to moonlight with Butteau Bot, a company that's headquartered in Virginia. Now I'm the CISO of ButteauBot and we're doing full scope adversary emulation. So one thing I learned at Ubisoft with the Lapsis incident that happened is that there's a giant disconnect between bug bounty and penetration testingThat actually causes an incident at a company. And so adversaries like, yeah, they do take advantage of application infrastructure bugs, but more often than not, they're using phishing or configuration.
Transcript
Play full episode
