Vulnerability Management
XZ Utils CVE-2024-3094: A Tale of Broken Trust, Curious Persistence, and a Call to Action
Learn about a backdoor vulnerability, its impacts, and the importance of securing open source.
Popular posts
The ICO’s 12-Step Guide to GDPR Compliance
Vulnerability Disclosure,
Security Compliance,
Company Resources,
GDPR,
Compliance
Hack The Pentagon Turns One on HackerOne
Ethical Hacker,
Challenge,
News,
Customer Stories,
Bounty
Key Findings From The Hacker-Powered Security Report: It’s Not Just For Tech (1 of 6)
Security Compliance,
Hacker Powered Security Report
Breach Basics: Preparation for the Inevitable
Company News,
Best Practices,
Company Resources
Discover more with topics that matter to you most.
Application Security
Learn how to prevent vulnerabilities in your applications. We cover current practices in application security, cloud security, API testing, and more.
Ethical Hacker
Ethical hackers, pentesters, and security researchers. We explain everything you need to know about them and how they can help your organization.
Company News
Stay informed of HackerOne partnerships, integrations, hackathon results, and other developments that keep HackerOne customers two steps ahead of cybercriminals.
Blogs From HackerOne's CEO
Read insights from HackerOne Chief Executive Officer Marten Mickos.
Penetration Testing
Follow the latest practices in penetration testing, including API testing, application testing, external networks, internet-facing infrastructure, and more.
Security Compliance
From FedRAMP to GDPR, we’ll help you understand the security requirements of every compliance and regulatory standard. Learn how you can prove compliance.
Vulnerability Management
We cover everything in vulnerability management including discovery, prioritization, assessment, disclosure, and remediation.
Customer Stories,
Application Security,
Best Practices,
Bounty,
Vulnerability Management
How Wix Improves Their Security Posture with Ethical Hackers
April 21st, 2022
Reducing risk is fundamental to Wix’s approach to cybersecurity, and as the threat landscape evolves, they...
Company News,
Vulnerability Management
Announcing the HackerOne 2022 Attack Resistance Report: A Security Survey—How to Close Your Organization's Attack Resistance Gap
April 19th, 2022
Today, HackerOne published The 2022 Attack Resistance Report: A HackerOne Security Survey. Our research...
Vulnerability Management
The HackerOne Global Top 10—Hacker Expertise, Industry Data, and Up-to-Date Vulnerabilities
January 14th, 2022
Many security teams use the OWASP Top 10 as a guideline to understand where they should focus their security...
Vulnerability Management,
Vulnerability Disclosure
Log4Shell: Attack Evolution
January 6th, 2022
For many security teams, the holiday season was spoiled by the challenging remediation of Log4Shell. The...
Vulnerability Management
CWE (Common Weakness Enumeration) and the CWE Top 25 Explained
December 16th, 2021
Common Weakness Enumeration (CWE) is a system to categorize software and hardware security flaws...
Get the latest news and insights beamed directly to you
Vulnerability Management
Log4j Vulnerability Activity on the HackerOne Platform
December 13th, 2021
December 17th Update: Vulnerabilities in Log4j have been evolving over the course of this week since the...
Vulnerability Management
What Is The Common Vulnerability Scoring System (CVSS)
December 9th, 2021
Organizations need to identify, prioritize, and remediate these vulnerabilities as soon as possible. CVSS is a...
Security At Event,
Vulnerability Management
How Hackers Help Organizations Face New Attack Vectors and Build Stronger Security Programs
December 7th, 2021
Among the topics they explored included the success of their long-running bug bounty programs in discovering...