To get in touch about speaking at your event, email [email protected]
Media Packet
1,042 items across 6 categories — press, broadcast, stage, and paperwork. Captured, displayed, and archived for posterity.
1,042 items
Press
Dark Reading published an article examining how vulnerability exploitation tactics are changing in 2024-25. Casey Ellis argues that defenders have recently gained advantage through expanded bug bounty programs, improved disclosure practices, and more proactive vendor security efforts.
Press
CIO Dive reported on a bipartisan bill to renew the Cybersecurity Information Sharing Act. Casey Ellis stated that the legislation is crucial for reinforcing the public-private trust framework essential for national cybersecurity.
Press
HackRead published an article on April 16, 2025, explaining slopsquatting, an attack that exploits inaccuracies in AI-generated code. Ellis outlines how the threat exploits developer trust in AI tools and underscores the importance of verification practices for generated code.
Press
Forbes published an article on the potential disruption of the Common Vulnerabilities and Exposures program and its impact on cybersecurity. Casey Ellis describes the CVE program as a common language for vulnerabilities that prevents chaos and enables coordinated defense across the industry.
Broadcast
Down the Security Rabbithole published episode 649 of its video podcast series on April 10, 2025, featuring Casey Ellis discussing bug bounties and the vulnerability disclosure landscape. Ellis addresses the evolution of coordinated vulnerability management and shares perspective on industry direction with hosts Rafal, James, and Jim.
Press
SC Magazine published an article on April 8, 2025, examining Xanthorox, a malicious AI tool designed to enable criminal activity without requiring jailbreaks. Casey Ellis discusses how Xanthorox demonstrates AI's dual-use potential, noting that while AI democratizes technology, it simultaneously reduces the technical barriers required to execute sophisticated cyberattacks.
Broadcast
Coffee & Pizza Podcast episode 023 features Casey Ellis, founder of Bugcrowd, discussing his background and career path. Ellis shares his early experiences as a hacker in Australia and the journey that led him to establish Bugcrowd as a crowdsourced security platform.
Press
An SC Magazine article covers an NSA advisory warning about fast-flux DNS evasion techniques as a national security threat. Casey Ellis describes the method as a shell game that conceals malicious servers and points to how cybercrime has become industrialized.
Press
Forbes published "Hack OpenAI And Win $100,000? What You Need To Know" on March 29, 2025, examining OpenAI's bug bounty initiative. Casey Ellis comments that the program represents a positive commitment to security and transparency that strengthens trust with users and security researchers.
Press
Forbes published an article on the surge in ransomware attacks and the security vulnerabilities enabling them. Casey Ellis attributes the increase to threat actors leveraging AI for sophisticated phishing campaigns and developing techniques to circumvent multi-factor authentication, while advocating for stronger defensive measures.
Broadcast
Bugcrowd released a video on H.R. 872 featuring founder Casey Ellis and Americas CISO Trey Ford discussing the legislation's implications for cybersecurity. Ellis and Ford examine what the bill means for the industry and outline anticipated next steps in regulatory and security policy development.
Papers
arXiv.org published a research paper examining gaps in how flaws in general-purpose AI systems are reported and evaluated compared to established software security practices. The paper, developed by collaborators across security, machine learning, law, and policy, proposes standardized flaw reporting formats, broad disclosure programs with legal protections for researchers, and improved infrastructure for coordinating reports across AI providers.
Papers
A research paper published on ResearchGate examines third-party evaluation frameworks for identifying flaws in general-purpose AI systems beyond internal testing. Casey Ellis contributes analysis on robust disclosure mechanisms needed to ensure comprehensive vulnerability detection in large language models and similar AI technologies.
Broadcast
A CyberRisk TV video segment features an interview between host Deb Radcliff and Bugcrowd founder Casey Ellis about artificial intelligence's role in application security attacks and defenses. Ellis discusses how AI is reshaping both offensive and defensive strategies in the evolving landscape of application security threats.
Broadcast
The Phillip Wylie Show features an interview with Casey Ellis, founder of Bugcrowd, discussing his background in technology and the development of bug bounty platforms. Ellis describes how Bugcrowd connects organizations with ethical hackers to identify security vulnerabilities, and explains his approach to leveraging the white hat hacker community to enhance internet security.
Broadcast
Bugcrowd published a Security Flash video featuring founder Casey Ellis and America's CISO Trey Ford discussing the Salt Typhoon threat. The 20-minute broadcast covers Salt Typhoon's background, organizational impact, and implications for security teams.
Broadcast
Delinea's 401 Access Denied podcast features a discussion on crowdsourced security and vulnerability disclosure practices. Ellis explains how crowdsourced models improve security outcomes and discusses the role of coordinated disclosure in modern threat management.
Awards & Judging
Casey Ellis has been accepted as a member of the Black Hat Review Board for 2025. In this role, he will serve as a judge evaluating submissions for the annual information security conference.
Broadcast
SAINTCON 2024 released a video featuring Adam Marre discussing the path to becoming a CISO on YouTube. The talk covers career development, responsibilities, and practical insights for security professionals aspiring to chief information security officer roles.
Broadcast
Security Breach, a podcast from Manufacturing Business Technology, featured Casey Ellis as a guest in December 2024. Ellis discussed vulnerability management and coordinated disclosure practices with host on the program.
Stage
Stanford HAI published a piece on strengthening AI accountability through improved third-party evaluations on November 6, 2024. Casey Ellis participated as a panelist in the discussion on evaluation frameworks and accountability mechanisms for AI systems.
Stage
SAINTCON 2024 presented a keynote address by Casey Ellis titled "Release The Hounds, Part 3 - History Repeating" on October 24, 2024. Ellis examines patterns in security history and their relevance to current threats and industry practices.
Stage
Saintcon published "Release The Hounds, Part 3 – History Repeating," a recorded stage presentation from October 2024. Casey Ellis discusses patterns in cybersecurity vulnerabilities and attack methods, examining how historical threats resurface and evolve within modern threat landscapes.
Stage
Saintcon 2024 published the third installment of Casey Ellis's "Release The Hounds" presentation series on YouTube. Ellis discusses historical patterns in security threats and how past vulnerabilities continue to resurface in modern systems, emphasizing cyclical challenges in threat landscape management.
Broadcast
Bugcrowd's Hacker Showdown 2024 broadcast documents a competitive hacking event where teams competed for a $30,000 grand prize and additional rewards. Casey Ellis appears in the broadcast alongside Bugcrowd leadership to provide commentary on the event and its outcomes.
Broadcast
A Forcepoint podcast episode from August 2024 examines the relationship between artificial intelligence and human decision-making in security contexts. Casey Ellis discusses AI's risks and benefits in cybersecurity, its workplace applications, ethical considerations, and the disclose.io vulnerability disclosure initiative.
Broadcast
The Inevitability Curve is a video presentation from the RSA 2024 conference featuring Casey Ellis of Bugcrowd. Ellis discusses the trajectory and certainty of emerging cybersecurity trends and their organizational impact.
Broadcast
MySecurity Marketplace broadcast from August 2024 features Bugcrowd CEO Dave Gerry discussing the company's growth strategies and expansion across the Asia Pacific region following its recent unicorn valuation and $102 million funding round. Casey Ellis, Bugcrowd founder, participates in outlining the organization's future plans for market development in the region.
Broadcast
Decipher, a Duo and Cisco video series, released an episode analyzing Michael Mann's 1995 crime thriller Heat. Casey Ellis appears in the broadcast to discuss security themes embedded within the film's narrative and characters.
Broadcast
A video presentation from RSAC Cybersecurity explores bug bounty implementation in airline IT and OT environments. Casey Ellis discusses the security challenges and operational considerations specific to aviation systems and the role of coordinated vulnerability disclosure in that sector.