HackerOne Blog

AI

Layers of Defense for AI Security Graphic

July 8, 2025

AI is changing the attack surface. CISOs can respond with human-led testing, crowdsourced insight, and a new playbook for AI security.

Read Now

All

Cloud Security

Code Security

Crowdsourced Security

Culture & Talent

Defense in Depth

From the CEO

HackerOne News

Offensive Security

Public Policy

Return on Mitigation

Security Compliance

Security Research

Exposure Management

Public Policy

Response

AI Red Teaming

What Security Leaders Need to Know About the UK’s Updated Cyber Framework

August 26, 2025

Learn how the UK’s CAF v4.0 updates impact cybersecurity risk assessment and what security leaders need to know. Get actionable insights.

Code Security

Code

Scaling Expert Oversight of AI: HackerOne's Human-in-the-Loop Methodology

August 21, 2025

How HackerOne Code scales secure AI with HiTL validation, combining expert oversight, Explainable AI, and continuous feedback loops.

Code

How HackerOne Uses AI to Triage, Prioritize, and Validate Code Scanner Findings at Scale

August 21, 2025

AI-powered validation cuts through scanner noise, helping dev teams triage, prioritize, and remediate code vulnerabilities faster.

AI Red Teaming

DEF CON 33: Field Notes on AI Security, AI Red Teaming, and the Road Ahead

August 21, 2025

DEF CON 33 revealed where AI security is headed: continuous testing, hybrid models, and agentic systems. See the key takeaways.

Exposure Management

Hai

Beyond the Noise: How HackerOne Cuts Through the Noise in the Age of AI

July 30, 2025

More AI means more reports, and more noise. See how HackerOne’s Hai Triage and Insight Agent keep quality high and push faster fixes with human‑in‑the‑loop AI.

Exposure Management

Hai

Scale Security Knowledge with Shared Hai Plays

July 24, 2025

Hai Plays helps security teams move faster, cut repetitive work, and drive consistent results by turning team knowledge into actions across the organization.

Slopsquatting: AI's Contribution to Supply Chain Attacks

July 16, 2025

As developers turn to AI tools to speed up coding, a new threat is emerging: slopsquatting. Learn how hallucinated package names in AI-generated code open the door to supply chain attacks, and what you can do to stop them.

Public Policy

The EU’s GPAI Code of Practice Highlights A Security-Centered Approach to AI

July 11, 2025

The EU’s new GPAI Code lays out how to build AI responsibly, with a big focus on transparency, safety, and security. See why red teaming, bug bounties, and disclosure programs are becoming must-haves for AI developers.

8 AI Cybersecurity Concepts Every CISO Must Know: Insights from Anthropic and AWS

July 10, 2025

Explore critical AI cybersecurity terms and concepts from our Anthropic and AWS webinar, boosting your understanding of vulnerabilities and safeguards.