YesWeHack Launches Continuous Threat Exposure Management Product That Unifies Offensive Security Testing

|

|

Last update:

SINGAPORE–(BUSINESS WIRE)–YesWeHack has unveiled a powerful Attack Surface Management (ASM) product that enables clients to orchestrate their offensive security and vulnerability remediation strategy through a risk-based approach.


The new product continuously maps an organisation’s internet-exposed assets, detects their possible exposure to known vulnerabilities, and automatically prioritises those vulnerabilities (based on severity, exploitability and asset criticality).

Unlike standalone platforms, YesWeHack’s ASM integrates vulnerabilities from automated scanning (by the ASM) and YesWeHack’s Bug Bounty, Pentest Management and Vulnerability Disclosure Policy (VDP) products – creating a one-stop-shop for all vulnerabilities.

Amid tight security budgets, the ASM also automates and harmonises workflows to reduce costs, workloads and time-to-fix.

The five operational phases of Gartner’s Continuous Threat Exposure Management (CTEM) model are implemented: scope, discover, prioritise, validate, mobilise.

- A message from our partner -

This enables a unified, comprehensive and risk-based approach to security testing and remediation of the most critical vulnerabilities at scale.

The turnkey-deployable ASM also introduces a design revamp to YesWeHack’s overall platform.

A rapid expansion of attack surfaces, increasingly complex tech stacks and rapid development cycles are fuelling an inexorable rise in vulnerabilities, often present in unknown assets. However, Gartner forecasts that CTEM programs could drive a two-thirds reduction in breaches.

Aïmad Berady, YesWeHack’s VP Product, comments: “With the time-to-exploit for new vulnerabilities plummeting, clearing the ‘fog of war’ surrounding the organisation’s information system and maintaining an up-to-date big picture is crucial. After all, knowing your enemy is useless if you don’t know your digital territory.”

Guillaume Vassault-Houlière, YesWeHack’s CEO and co-founder, comments: “A 360-degree cockpit combining unified vulnerability management with external attack surface management enables clients to think like, and therefore thwart, an attacker – spotting and sealing off the weakest, most hackable vectors.”

About YesWeHack

YesWeHack is a leading Bug Bounty and Vulnerability Management Platform whose clients include ZTE, Tencent, Swiss Post, Orange France and the French Ministry of Armed Forces. Founded in 2015, YesWeHack connects organisations worldwide to tens of thousands of ethical hackers, who uncover vulnerabilities in websites, mobile apps and other digital assets. YesWeHack products include Bug Bounty, Vulnerability Disclosure Policy (VDP), Pentest Management and Attack Surface Management platforms. Find out more at www.yeswehack.com and via Twitter, LinkedIn, YouTube and GitHub.

Contacts

Media

Marine Magnant

Head of Marketing & Com

[email protected]

Topics:

Follow us:

Business Wire

Business Wire, a Berkshire Hathaway company, is the global leader in press release distribution and regulatory disclosure. Public relations, investor relations, public policy and marketing professionals rely on Business Wire for secure and accurate distribution of market-moving news and multimedia. Founded in 1961, Business Wire is a trusted source for news organizations, journalists, investment professionals and regulatory authorities, delivering news directly into editorial systems and leading online news sources via its multi-patented NX network. Business Wire’s global newsrooms are available to meet the needs of communications professionals and news media worldwide.

Featured events | Browse events

Current Month

October

01octAll Day02Explore the future of enterprise technology: TechEx Europe 2024

02octAll Day04Amsterdam Fintech Event 2024 - AFE24Exclusive 50% discount inside!

Share to...