Vulnerability Management
XZ Utils CVE-2024-3094: A Tale of Broken Trust, Curious Persistence, and a Call to Action
Learn about a backdoor vulnerability, its impacts, and the importance of securing open source.
Popular posts
The ICO’s 12-Step Guide to GDPR Compliance
Vulnerability Disclosure,
Security Compliance,
Company Resources,
GDPR,
Compliance
Hack The Pentagon Turns One on HackerOne
Ethical Hacker,
Challenge,
News,
Customer Stories,
Bounty
Key Findings From The Hacker-Powered Security Report: It’s Not Just For Tech (1 of 6)
Security Compliance,
Hacker Powered Security Report
Breach Basics: Preparation for the Inevitable
Company News,
Best Practices,
Company Resources
Discover more with topics that matter to you most.
Application Security
Learn how to prevent vulnerabilities in your applications. We cover current practices in application security, cloud security, API testing, and more.
Ethical Hacker
Ethical hackers, pentesters, and security researchers. We explain everything you need to know about them and how they can help your organization.
Company News
Stay informed of HackerOne partnerships, integrations, hackathon results, and other developments that keep HackerOne customers two steps ahead of cybercriminals.
Blogs From HackerOne's CEO
Read insights from HackerOne Chief Executive Officer Marten Mickos.
Penetration Testing
Follow the latest practices in penetration testing, including API testing, application testing, external networks, internet-facing infrastructure, and more.
Security Compliance
From FedRAMP to GDPR, we’ll help you understand the security requirements of every compliance and regulatory standard. Learn how you can prove compliance.
Vulnerability Management
We cover everything in vulnerability management including discovery, prioritization, assessment, disclosure, and remediation.
Application Security,
Vulnerability Management
Security Highlights: New CWE Rankings, Software Supply Chains, and Side-Channel Attacks
July 5th, 2022
MITRE Releases 2022 CWE Top 25 The popular CWE Top 25 list, which ranks the most dangerous software...
Ethical Hacker,
Vulnerability Management
How Bug Bounty Uncovered A 5-Year-Old Vulnerability In Hours
June 16th, 2022
When PullRequest was acquired, these concerns became HackerOne’s challenges. When we finalized the acquisition...
Vulnerability Management
CISOs: Do You Know the Security Risks of Your Organization's Next M&A?
June 14th, 2022
First, I will discuss the inherent risks associated with M&As as attack surfaces grow. A Growing and...
Vulnerability Management
How to Catch Injection Security Vulnerabilities in Code Review
June 9th, 2022
Understanding Injection Vulnerabilities Injection vulnerabilities exist when information provided by users of...
Vulnerability Management
How Critical Infrastructure Can be Protected from Threats
June 2nd, 2022
Accessing a major critical infrastructure network is very appealing to cybercriminals, as they can maximize...
Get the latest news and insights beamed directly to you
Security Compliance,
Vulnerability Management
What Is a Security.txt File and How Can It Help Your Security Program?
May 27th, 2022
What is a security.txt file and how can it help your program?
Vulnerability Management
Understanding Public and Private Bug Bounties and Vulnerability Disclosure Programs
May 18th, 2022
How Are Bug Bounty Programs and Vulnerability Disclosure Programs Different? Let’s start with the similarities...
Vulnerability Management
Introducing HackerOne Assets
May 10th, 2022
Attack Resistance Management is the management of human security tests on your attack surface designed to...