Bouygues Telecom is glad to work with Yogosha. Thanks to Yogosha’s hackers, selected for their high expertise and pedagogy, we have fixed several vulnerabilities. Moreover, the platform continuously evolves with customers feedbacks. Being close to our editor, and working with a reactive team such as Yogosha is also of great importance to us.

Bug Bounty's flexibility and fast activation helps us to save a lot of time to secure our digital activities : programs are launched in 1 or 2 days, when pentesting can take up to 4 weeks of planification delay. At Thales Digital Factory, we chose quality and hackers skills rather than quantity, and Yogosha perfectly fits into our Red Team process. The platform is a central security tool to ensure the external security level of our solutions. We will keep using traditional pentesting for ad-hoc missions and to challenge Bug Bounty results.

Collaborating with Yogosha’s hunters, whose technical excellence has been validated by the quality of the reports submitted, has been very enriching for our teams. The Yogosha experience has allowed the technical teams to gain both skills and maturity on the “security by design” challenges. We identified critical vulnerabilities which we wouldn’t have seen without Bug Bounty, and we were able to improve our internal processes. The next step with Yogosha is to intensify and industrialize the Bug Bounty approach at Zadig & Voltaire.

The Ministry of Armed Forces had a successful Bug Bounty experience with Yogosha and Capgemini on an application under development in order to integrate this concept into an experimental software factory where all levels of DevSecOps are to be implemented. Yogosha’s elite community of hackers allowed us to progress on this concept through a real case study. We were able to correct many different vulnerabilities on successive versions of the application under development assuring this task in a secure environment.