Case Study: Skyscanner strengthens product security and speeds remediation with Bugcrowd's On‑Demand Bug Bounty

Skyscanner - Customer Case Study

Skyscanner, a company known for innovation, wanted to expand its Security Squad’s testing beyond traditional penetration tests and explore crowd-sourced approaches to better evaluate and improve its products. In early 2015 the team sought a more scalable, hands-on way to uncover real-world vulnerabilities across Skyscanner.net.

Skyscanner ran a Bugcrowd On‑Demand Bug Bounty with 49 researchers over two weeks, yielding 140+ reported issues and 43 triaged for investigation. Prioritized findings came with replication steps, HTTP requests, and media, enabling fast remediation and resulting in measurable improvements to product security, developer engagement, and incident response.

Skyscanner

Christian Martorella

Security Engineering lead