We are pleased to announce our collaboration with Bugcrowd. Our mission is to support people’s right to privacy through security consulting and building secure solutions. As a leader in the security of distributed systems, we offer consulting services, develop privacy-enhancing solutions, and contribute to the advancement of related open source
Multiple steps are involved to ensure a successful collaboration on a planned security consulting engagement. Whether it requires a security audit, limited security evaluation, or security by design consultation, the process begins by scheduling a call to clarify the in-scope components, areas of concern that are to be prioritized during
The zero-knowledge space is rapidly gaining traction as privacy becomes a critical concern due to the daily news of data breaches that expose personal information to malicious actors. With the exponential growth of data collection and the increasing reliance on cloud services and decentralized technologies, individuals and organizations are seeking
In our previous blog post, Security Audit Reports: A Guide for Everyone, we provided a comprehensive guide on how to read a security audit report. We discussed the various sections of an audit report, what to look for, and how to interpret the findings to gain insights into the security
In 2014, we published our first security audit report. Since then, we have completed more than 200 audits and published more than half of those. The primary audience of an audit report is the client’s project development team. However, stakeholders and other interested parties can also find value in reading
In January, we celebrated the 10-year anniversary of our first ever published security audit report. At the time of our first review, security consulting for privacy-enhancing and distributed technologies was a fledgling industry, and there were very few companies, like us, offering our specialized knowledge and expertise for security analysis
In Part 1 of this blog, we delved into the constantly changing world of Web3, unveiling the opportunities it presents. In Part 2, we’re continuing this exploration with a focus on the types of projects receiving support, with a particular emphasis on improving security — a critical yet often overlooked
This past year, we’ve started investigating new approaches to our security audit reports and recently we’re experimenting with structuring the data to be more usable by additional audiences and systems, along with publishing our reports in new ways to make them more accessible. Reports as Bitcoin Digital Artifacts We have