HackerOne Blog

The latest from HackerOne

A Call for a New Cybersecurity Measurement Standard

February 26th, 2025

Cybersecurity initiatives provide financial value to organizations. Still, translating the benefits of cybersecurity into dollars and cents has long been a challenge for security teams.

Read Now

All

Culture and Talent

Customer Stories

Engineering

From The CEO

News & Updates

Public Policy

Researcher Community

Mercado Libre merch during Ambassador World Cup

Bug Bounty

Join HackerOne’s Ambassador World Cup

May 6th, 2024

Learn the benefits of taking part in the Ambassador World Cup as a customer and how to get involved!

Follow-up or Fail

May 3rd, 2024

Rafael de Carvalho shares 3 tips for managing the pitfalls of saying "yes."

HackerOne Invests Leaders with New Development Program

HackerOne Invests in Leaders with New Development Program

May 3rd, 2024

The 14-week program focuses on developing the skills necessary to lead with self-awareness, communicate with...

HackerOne employees volunteer during Day of Service

HackerOne’s Spring Day of Service

May 2nd, 2024

We wasted no time reaching out to HackerOne employees for the inaugural Day of Service...

Security Compliance

Penetration Testing

CREST and Pentesting: What You Need to Know

May 2nd, 2024

Learn the importance of using a CREST-certified and approved security partner for your pentest engagements.

HackerOne and Zoom Select EverythingALS as the Latest Charity For #Hackforgood

May 1st, 2024

HackerOne has partnered with Zoom to select EverythingALS as the Hack For Good donation option for ALS Awareness Month.

HackerOne’s Next Stage of Growth

May 1st, 2024

I am retiring from HackerOne and have started the search for my successor as CEO of this awesome company.

Hacker discovering prompt injection vulnerability

AI Safety & Security

Vulnerability Management

How a Prompt Injection Vulnerability Led to Data Exfiltration

April 29th, 2024

As the use of GenAI and LLMs has ramped up, so have the vulnerabilities that come with them, and one of the worst is prompt injection.

Lessons Learned from Over a Decade of On-Call

April 26th, 2024

Shubhi Gupta shares tips and lessons from 12 years of being an on-call engineer.