Vulnerability Management
XZ Utils CVE-2024-3094: A Tale of Broken Trust, Curious Persistence, and a Call to Action
Learn about a backdoor vulnerability, its impacts, and the importance of securing open source.
Popular posts
The ICO’s 12-Step Guide to GDPR Compliance
Vulnerability Disclosure,
Security Compliance,
Company Resources,
GDPR,
Compliance
Hack The Pentagon Turns One on HackerOne
Ethical Hacker,
Challenge,
News,
Customer Stories,
Bounty
Key Findings From The Hacker-Powered Security Report: It’s Not Just For Tech (1 of 6)
Security Compliance,
Hacker Powered Security Report
Breach Basics: Preparation for the Inevitable
Company News,
Best Practices,
Company Resources
Discover more with topics that matter to you most.
Application Security
Learn how to prevent vulnerabilities in your applications. We cover current practices in application security, cloud security, API testing, and more.
Ethical Hacker
Ethical hackers, pentesters, and security researchers. We explain everything you need to know about them and how they can help your organization.
Company News
Stay informed of HackerOne partnerships, integrations, hackathon results, and other developments that keep HackerOne customers two steps ahead of cybercriminals.
Blogs From HackerOne's CEO
Read insights from HackerOne Chief Executive Officer Marten Mickos.
Penetration Testing
Follow the latest practices in penetration testing, including API testing, application testing, external networks, internet-facing infrastructure, and more.
Security Compliance
From FedRAMP to GDPR, we’ll help you understand the security requirements of every compliance and regulatory standard. Learn how you can prove compliance.
Vulnerability Management
We cover everything in vulnerability management including discovery, prioritization, assessment, disclosure, and remediation.
Vulnerability Management,
Hacker Powered Security Report
Key Findings From The Hacker-Powered Security Report: Responsive Programs Attract Top Hackers (3 of 6)
July 25th, 2017
<Note: This is the third in a six-part series expanding on the “key findings” of the Hacker-Powered Security...
Vulnerability Management,
New Features
What is your program’s Scope?
July 20th, 2017
We are glad to announce our new functionality for defining Scope! HackerOne’s Vulnerability Taxonomy now...
Vulnerability Management,
Hacker Powered Security Report
Key Findings From The Hacker-Powered Security Report: Security Responsiveness is Improving (2 of 6)
July 18th, 2017
<Note: This is the second in a six-part series expanding on the “key findings” of the Hacker-Powered Security...
Vulnerability Management,
Best Practices
More Hardware, More Problems
April 12th, 2017
Microwaves notwithstanding , there is an increasing amount of connected technology in our homes, cars, and...
Events,
Vulnerability Management
Tapping Hackers for Continuous Security
March 31st, 2017
Last week, I attended the FinDEVr conference in New York City. The 2-day conference is focused on the...
Get the latest news and insights beamed directly to you
HackerOne Community Blog,
Vulnerability Management,
New Features,
Ethical Hacker
Introducing CWE-based Weaknesses
March 16th, 2017
Letting go is hard. Today we say goodbye to the original 18 vulnerability types on HackerOne. They’ve been...
Vulnerability Management,
New Features
Advanced Workflows with Inbox Views
January 17th, 2017
By default, HackerOne offers a standard vulnerability disclosure workflow that supports most security teams...
Vulnerability Management,
New Program Launch
Nintendo Launches Vulnerability Reward Program For NINTENDO 3DS
December 5th, 2016
Nintendo is offering an incentive to the world’s finest researchers to find and report security...