Vulnerability Management
XZ Utils CVE-2024-3094: A Tale of Broken Trust, Curious Persistence, and a Call to Action
Learn about a backdoor vulnerability, its impacts, and the importance of securing open source.
Popular posts
The ICO’s 12-Step Guide to GDPR Compliance
Vulnerability Disclosure,
Security Compliance,
Company Resources,
GDPR,
Compliance
Hack The Pentagon Turns One on HackerOne
Ethical Hacker,
Challenge,
News,
Customer Stories,
Bounty
Key Findings From The Hacker-Powered Security Report: It’s Not Just For Tech (1 of 6)
Security Compliance,
Hacker Powered Security Report
Breach Basics: Preparation for the Inevitable
Company News,
Best Practices,
Company Resources
Discover more with topics that matter to you most.
Application Security
Learn how to prevent vulnerabilities in your applications. We cover current practices in application security, cloud security, API testing, and more.
Ethical Hacker
Ethical hackers, pentesters, and security researchers. We explain everything you need to know about them and how they can help your organization.
Company News
Stay informed of HackerOne partnerships, integrations, hackathon results, and other developments that keep HackerOne customers two steps ahead of cybercriminals.
Blogs From HackerOne's CEO
Read insights from HackerOne Chief Executive Officer Marten Mickos.
Penetration Testing
Follow the latest practices in penetration testing, including API testing, application testing, external networks, internet-facing infrastructure, and more.
Security Compliance
From FedRAMP to GDPR, we’ll help you understand the security requirements of every compliance and regulatory standard. Learn how you can prove compliance.
Vulnerability Management
We cover everything in vulnerability management including discovery, prioritization, assessment, disclosure, and remediation.
Vulnerability Management,
Vulnerability Disclosure,
Bounty
HOW DIGITAL TRANSFORMATION CHANGES AN ORGANIZATION'S SECURITY CHALLENGES
June 3rd, 2021
Last week, HackerOne joined WhiteSource , AWS , and IGT for a roundtable discussion about the new security...
Vulnerability Management
MICROSOFT SAYS: RUSSIAN SOLARWINDS HACKERS HIT U.S. GOVERNMENT AGENCIES AGAIN
June 2nd, 2021
According to the New York Times , Microsoft says the state-backed Russian hacker group Nobelium—the same actor...
Vulnerability Management,
Customer Stories,
Assessments
5 Secrets of a Mature Vulnerability Management Program from Costa Coffee and Priceline
May 5th, 2021
This week HackerOne hosted a series of webinars that asked participants about how they rated their level of...
Vulnerability Management
Saxo Bank Celebrates One Year of Bug Bounties: Q&A with CISO Mads Syska Hasling
April 30th, 2021
Q: Tell us a bit about yourself. A: I’m Mads Syska Hasling, CISO at Saxo Bank. I run the first-line security...
Vulnerability Management,
Best Practices,
Events
How HackerOne Helps the Vulnerability Management Process
April 29th, 2021
How HackerOne Helps the Vulnerability Management Process HackerOne sees vulnerability management as a process...
Get the latest news and insights beamed directly to you
Company News,
Data and Analysis,
Vulnerability Management
The Rise of IDOR
April 2nd, 2021
Insecure Direct Object References (or IDOR) is a simple bug that packs a punch. When exploited, it can provide...
Vulnerability Management,
Live Hacking Events,
Events
PayPal is our Virtual Pal
March 19th, 2021
In June , sixty-one hackers from thirteen countries gathered (virtually) to hack digital payments platform...
Vulnerability Management
The Rise of Misconfiguration and Supply Chain Vulnerabilities
February 25th, 2021
Singapore-based telecom firm, Singtel , revealed last week it had suffered a security breach as a result of...