Case Study: Cloudinary achieves stronger application security and rapid remediation with Bugcrowd's Managed Bug Bounty

Cloudinary turns to crowdsourced security with Bugcrowd

Cloudinary, a leading media management platform used by thousands and hosting billions of assets, needed to strengthen its application security after traditional tools and periodic penetration tests were not finding enough critical, actionable issues. With user trust and a digital‑first customer experience at stake, the company sought a scalable, continuous approach to surface and remediate real vulnerabilities.

Cloudinary launched a managed bug bounty program with Bugcrowd, leveraging a global researcher community, triage services, and an evolving scope to uncover hard‑to‑find issues. The program produced 500+ submissions from nearly 360 researchers, led to remediation of all valid high‑ and critical‑severity findings, improved continuous 24/7 testing coverage, reduced risk, and increased customer confidence.

Cloudinary

Netanel Fisher

CISO