Vulnerability Management
XZ Utils CVE-2024-3094: A Tale of Broken Trust, Curious Persistence, and a Call to Action
Learn about a backdoor vulnerability, its impacts, and the importance of securing open source.
Popular posts
The ICO’s 12-Step Guide to GDPR Compliance
Vulnerability Disclosure,
Security Compliance,
Company Resources,
GDPR,
Compliance
Hack The Pentagon Turns One on HackerOne
Ethical Hacker,
Challenge,
News,
Customer Stories,
Bounty
Key Findings From The Hacker-Powered Security Report: It’s Not Just For Tech (1 of 6)
Security Compliance,
Hacker Powered Security Report
Breach Basics: Preparation for the Inevitable
Company News,
Best Practices,
Company Resources
Discover more with topics that matter to you most.
Application Security
Learn how to prevent vulnerabilities in your applications. We cover current practices in application security, cloud security, API testing, and more.
Ethical Hacker
Ethical hackers, pentesters, and security researchers. We explain everything you need to know about them and how they can help your organization.
Company News
Stay informed of HackerOne partnerships, integrations, hackathon results, and other developments that keep HackerOne customers two steps ahead of cybercriminals.
Blogs From HackerOne's CEO
Read insights from HackerOne Chief Executive Officer Marten Mickos.
Penetration Testing
Follow the latest practices in penetration testing, including API testing, application testing, external networks, internet-facing infrastructure, and more.
Security Compliance
From FedRAMP to GDPR, we’ll help you understand the security requirements of every compliance and regulatory standard. Learn how you can prove compliance.
Vulnerability Management
We cover everything in vulnerability management including discovery, prioritization, assessment, disclosure, and remediation.
Vulnerability Management
XZ Utils CVE-2024-3094: A Tale of Broken Trust, Curious Persistence, and a Call to Action
April 1st, 2024
Learn about a backdoor vulnerability, its impacts, and the importance of securing open source.
Vulnerability Management
What Are Bug Bounties and How Do They Work?
March 25th, 2024
Learn the ins and outs of bug bounty programs with three examples from major industry players.
Vulnerability Management
How an Information Disclosure Vulnerability Led to Critical Data Exposure
March 21st, 2024
A deep dive into the pervasiveness of information disclosure, and how one vulnerability led to critical data exposure.
Vulnerability Management
HackerOne’s In-Depth Approach to Vulnerability Triage and Validation
March 14th, 2024
Not all VDP triage teams and workflows are created equal. Learn how HackerOne approaches vulnerability triage and validation.
Vulnerability Management
Shift Left is Dead: A Post Mortem
March 13th, 2024
Shift left is dead. What now?
Get the latest news and insights beamed directly to you
Vulnerability Management
How an Improper Access Control Vulnerability Led to Account Theft in One Click
February 15th, 2024
Let’s look more closely at the improper access control vulnerability type — what it is, how it’s used, and how to remediate it.
Vulnerability Management,
Assessments
How to Find Mistakes Earlier and Save Money With Code Security Audit
January 18th, 2024
Learn how organizations can find mistakes earlier and save an average of $18,037 using Code Security Audit.
Vulnerability Management
How a Cross-Site Scripting Vulnerability Led to Account Takeover
January 15th, 2024
This is the first in a series of deep dives into the most prominent and pervasive vulnerabilities, starting with cross-site scripting.