Luta Security Highlights for Zoom Bug Bounty Programs
As our transition period with Zoom ends today, we wanted to review a few highlights from our work on their bug bounty programs, which is documented in the image above.
With Zoom’s surge in popularity during the past few months, the surge of potential vulnerability reports increased exponentially. Luta helped flatten the curve of Zoom’s bug cases by 37% in less than 10 weeks, targeting and eliminating imminent zero-day risks for those cases. We also provided a vulnerability handling maturity gap analysis and roadmap for Zoom to use moving forward, as the company works toward achieving ISO 29147 and ISO 30111 compliance.
Additionally, Luta was able to quickly onboard internal staff, source diverse candidates and offer Zoom more than two dozen potential staff members to help augment Zoom’s internal teams as the company continues to evolve its vulnerability management processes.
Finally, Zoom CEO, Eric Yuan, personally asked Luta’s CEO Katie Moussouris to serve as his security advisor. They plan to meet quarterly to discuss Zoom’s overall security posture and comprehensive security improvements. With more than 20 years of professional security experience, Katie brings a unique and unparalleled perspective, and she serves as a global security leader and advisor for several governments and large organizations around the world.
What is next for Luta?
Luta is growing and looking for a diverse workforce of talented developers, engineers, and other professionals with a passion for cyber security. If you are interested in working for a company that believes deliberate choices in labor equity are vital to building a strong, sustainable organization, please stay tuned for new opportunities on our careers page and Twitter account.