News & Events

Bill Carroll Joins Bishop Fox as Chief Operating Officer

Bishop Fox, the largest private professional services firm focused on offensive security testing, announced today that Bill Carroll has joined the firm as Chief Operating Officer (COO), where he will be responsible for the day-to-day operations of the company. As COO, Carroll will have oversight of operations, customer experience, IT, and human resources (HR) in addition to strategic …

Bishop Fox Sponsors Summercon 2019

Bishop Fox is a Gold sponsor of SummerCon 2019, which will be held in Brooklyn, NY from June 14-15, 2019. SummerCon is one of the oldest hacker conventions, and the longest running such conference in America. Several Bishop Fox consultants and sales team members will be on the ground during the con, so it’s …

Ken Green Joins Bishop Fox as Vice President of Product Management

Bishop Fox, the largest private professional services firm focused on offensive security testing, announced today that Ken Green has joined the firm as Vice President of Product Management. Green will be responsible for managing products across Bishop Fox’s suite of services, with a specific focus on technology-enabling the company’s team of offensive security specialists to work at …

Jon Rose Joins Bishop Fox as Vice President of Managed Security Services

Bishop Fox, the largest private professional services firm focused on offensive security testing, announced today that Jon Rose has joined the firm as vice president of Managed Security Services (MSS). Rose will lead the strategic development and delivery of the firm’s new managed services offerings. Prior to joining Bishop Fox, Rose was the chief security officer at …

Advisories

Greyhound Critical Vulnerabilities – Road Rewards Program

Critical vulnerabilities were identified in the Greyhound APIs primarily due to insufficient authentication controls. Exploitation of these can result in the exposure of personally identifiable information (PII) for the customers who had joined the Road Rewards program. Additionally, an attacker can also remotely exploit an internet-exposed web service that hosts account information for Greyhound customers as well as other sensitive information. An attacker could use this vulnerability to gain access unrestricted access and completely take over user accounts belonging to affected members.

Application Security