Vulnerability Management
XZ Utils CVE-2024-3094: A Tale of Broken Trust, Curious Persistence, and a Call to Action
Learn about a backdoor vulnerability, its impacts, and the importance of securing open source.
Popular posts
The ICO’s 12-Step Guide to GDPR Compliance
Vulnerability Disclosure,
Security Compliance,
Company Resources,
GDPR,
Compliance
Hack The Pentagon Turns One on HackerOne
Ethical Hacker,
Challenge,
News,
Customer Stories,
Bounty
Key Findings From The Hacker-Powered Security Report: It’s Not Just For Tech (1 of 6)
Security Compliance,
Hacker Powered Security Report
Breach Basics: Preparation for the Inevitable
Company News,
Best Practices,
Company Resources
Discover more with topics that matter to you most.
Application Security
Learn how to prevent vulnerabilities in your applications. We cover current practices in application security, cloud security, API testing, and more.
Ethical Hacker
Ethical hackers, pentesters, and security researchers. We explain everything you need to know about them and how they can help your organization.
Company News
Stay informed of HackerOne partnerships, integrations, hackathon results, and other developments that keep HackerOne customers two steps ahead of cybercriminals.
Blogs From HackerOne's CEO
Read insights from HackerOne Chief Executive Officer Marten Mickos.
Penetration Testing
Follow the latest practices in penetration testing, including API testing, application testing, external networks, internet-facing infrastructure, and more.
Security Compliance
From FedRAMP to GDPR, we’ll help you understand the security requirements of every compliance and regulatory standard. Learn how you can prove compliance.
Vulnerability Management
We cover everything in vulnerability management including discovery, prioritization, assessment, disclosure, and remediation.
Vulnerability Management,
Best Practices
Your First 90 Days as Security Lead, Part 2: Developing a Plan and Getting to Work
January 14th, 2019
You’ve just been named as your organization’s new head of security. So what do you do first? Read part one of...
Vulnerability Management,
Best Practices
Your First 90 Days as Security Lead, Part 1: Building Your Security Foundation
January 7th, 2019
Congratulations! You’ve just been named the new security lead for your organization. You probably have many...
Vulnerability Management,
Customer Stories,
New Program Launch,
Bounty
GitLab’s Public Bug Bounty Program Kicks Off: Q&A with GitLab’s Kathy Wang & James Ritchey
December 12th, 2018
GitLab is a single application for the entire DevOps lifecycle, making software development easier and more...
Vulnerability Management,
New Features
Integrate HackerOne directly into your website with Embedded Submissions
November 14th, 2018
Receiving vulnerabilities has never been easier with the release of our newest integration: Embedded...
Vulnerability Management,
New Features
Discovering programs is easier than ever with the new and improved Program Directory
November 5th, 2018
Today, we’re excited to announce an overhaul of the HackerOne Program Directory ! Since its launch, Hackers...
Get the latest news and insights beamed directly to you
Vulnerability Management,
Events,
Live Hacking Events
The Paranoids at Oath Take Bug Bounties to Argentina: h1-5411 Recap
October 10th, 2018
For the first time, HackerOne kicked off fall by migrating south. Way south. All the way to Buenos Aires...
Vulnerability Management,
Customer Stories,
Bounty
The U.S. Marine Corps Resolves Nearly 150 Vulnerabilities Thanks to Hackers
October 3rd, 2018
“I think we found something good,” said hackers @sumlac , @teknogeek , and @johnny said to a member of the...
Vulnerability Management,
Vulnerability Disclosure,
Response,
Company Resources
Streamline Every Aspect of Your Responsible Disclosure Policy with HackerOne Response
September 21st, 2018
"To improve the security of their connected systems, every corporation should have a vulnerability disclosure...