- Website: http://www.bugbank.cn
- Company size (employees): 50 to 99
- Country: China
- Headquarters Region: Asia
In 3 bullets, summarize why this company is different from the competition and deserves recognition:
Bugbank is the first to propose a new theory of open security in the world, taking the attack into enterprise revenue as the core. And by enhancing the security immunity of the IT system, the IT system as a whole is built for open security. Accepting the fact that security is dynamic and there must be security risks, using the principle of anti-fragility mechanism, constantly using security issues to upgrade immunity. Hence, the immunity to more security issues is improved, including immunity against unpredictable security issues.
Bugbank is the first information security company to locate city security. In view of the city security issues such as the large scale of information systems and the difficulty of security management and in city security, Bugbank refers to the international next-generation automatic vulnerability diagnosis system design system, based on an institution application threat risk model OWASP_TRM to build a new next generation of vulnerability comprehensive diagnosis and discovery platform-Bugeyes. Bugeyes responsible for threat warning and defence of information systems in the city area, responding to threats at the city level, covering zero-day vulnerabilities, general vulnerability discovery, passive scanning and automated detection, effectively solving city security problems and maximizing the discovery of high-risk vulnerabilities and critical risks. Timely early warning and repair to eliminate serious network security incidents in the enterprise within the city.
Bugbank takes the lead in realizing AI technology to the security field, leading-edge technological breakthroughs such as intelligent immune defence and proactive vulnerability discovery through AI technology. Through deep learning and analysis of security threat occasion, attacker behaviour, vulnerability types, vulnerability data, etc., the unknown attacks can be actively understood and identified, and realize zero-day warning and response to security threats such as data leaks, server privilege and malicious virus software to eliminate potential threats.
In less than 300 words, summarize the achievements of the company in the nominated category
Since the establishment of the company, Bugbank has made a lot of achievements and has been awarded the “Most Development Potential” and Most Investment Value Enterprise by Hurun Report and Forbes China. It is worth noting that the company has been recognized by top investment institutions such as Softbank China Venture Capital(SBCVC). In 2015, Bugbank won the A round of financing from SBCVC and won B round of financing of Puhua Capital in 2017. Bugbank has thousands of users in China, distributed in the financial, securities, Internet, e-commerce and other industries.
Bugbank has accumulated an authoritative database of vulnerabilities based on years of testing. The data comes from City Active Defense Centre(CADC), online test and authoritative data. Vulnerability data covers a wide range of industries and all the data are high-risk data that have research value. By accumulating vulnerability library experience and hack behaviour database, Bugbank has formed a set of security concepts based on city defence. And gradually implement security technology into more city security construction, and gradually provide protection for national city security through core vulnerability capabilities and data accumulation.
Bugbank refers to the international next-generation automatic vulnerability diagnosis design system, based on an institution application threat risk model OWASP-TRM to build a new next generation of vulnerability comprehensive diagnosis and discovery platform. Covering zero-day vulnerabilities, general vulnerability discovery, passive scanning, automated detection and joint diagnosis. Minimize the risk of institutional threats, improve the institution’s vulnerability discovery capabilities and proactively defend against potential security risks.