Yes We Hack
Creating different services for projects and organizations to find security experts to improve their security perimeter.
| Date | Investors | Amount | Round |
|---|---|---|---|
| investor investor | €0.0 | round | |
| investor investor investor | €0.0 | round | |
* | €26.0m | Series C | |
| Total Funding | 000k | ||
YesWeHack operates as a global crowdsourced cybersecurity platform, connecting organizations with a community of tens of thousands of ethical hackers to identify and remediate security vulnerabilities. Founded in 2015 by Guillaume Vassault-Houlière, Manuel Dorne, and Romain Lecoeuvre, the company provides a bug bounty platform designed to proactively secure websites, mobile applications, and digital infrastructure. Vassault-Houlière, a self-taught IT security enthusiast from a young age with a background in electronics, previously launched a specialized job board in 2013 to connect hackers with companies, a precursor to the more comprehensive model of YesWeHack.
The company's business model is centered on a pay-for-results approach, where clients offer financial rewards, or "bounties," for the discovery of valid security flaws. This model serves a diverse client base across 40 countries, including 70% of France's CAC 40 index, global brands like Louis Vuitton and Decathlon, tech unicorns such as Doctolib and BlaBlaCar, and various government institutions. Revenue is generated based on the successful identification of vulnerabilities, offering a cost-effective alternative to traditional penetration testing. Since its 2021 funding round, the firm reports a six-fold increase in annual recurring revenue.
YesWeHack offers a suite of integrated, API-based services. The core offering is its Bug Bounty platform, which can be deployed in private (invite-only) or public modes to match a client's specific security and budget requirements. This is complemented by services for creating a Vulnerability Disclosure Policy (VDP), Pentest Management for handling reports from multiple sources, and Attack Surface Management to map online exposure. The platform includes features like in-house triage services to validate reports, allowing client teams to focus on remediation. For the ethical hacker community, YesWeHack offers a structured environment with clear rules, bounty grids, and recognition through achievements and public profiles.
The company has achieved significant financial milestones, raising a total of $52 million over five rounds. Key funding events include a €4 million Series A in 2019, a €16 million Series B in 2021, and a €26 million ($28 million) Series C round in June 2024, led by Wendel. Headquartered in Paris, France, YesWeHack has expanded its international presence with offices in Switzerland, Germany, and Singapore.
Keywords: bug bounty, vulnerability management, ethical hacking, cybersecurity platform, crowdsourced security, penetration testing, vulnerability disclosure, attack surface management, information security, application security, network security, digital infrastructure security, security testing, pay-for-results security, corporate cybersecurity, government cybersecurity, financial services security, e-commerce security, technology security, European cybersecurity