HackerOne Blog

The latest from HackerOne

Finding Fast, Fixing Slow: The Rising Exposure Debt

May 6, 2026

Vulnerability submissions are up 76%. Unresolved criticals grew 25x. HackerOne platform data reveals a widening remediation gap that security teams can't afford to ignore.

Read Now

All

CTEM

Cloud Security

Code Security

Crowdsourced Security

Culture & Talent

Defense in Depth

From the CEO

HackerOne News

Offensive Security

Public Policy

Return on Mitigation

Security Compliance

Security Research

Exposure Management

The blue and pink image of the US Capital Building

Security Compliance

Public Policy

What Will a New Administration and Congress Mean for Cybersecurity and AI Regulation?

January 28, 2025

The HackerOne Policy team analyzes cybersecurity and AI regulation in the U.S. under the incoming administration.

Exposure Management

How HackerOne Reinvented Security for Developers

January 27, 2025

Applying human-in-the-loop principles creates application security controls loved by developers. See how.

Colorful image of people around the world

Crowdsourced Security

Exposure Management

From the CEO

Hope in the Fight Against Cyber Threats: A New Year’s Message to CISOs

January 23, 2025

Facing the Reality: Cybersecurity’s Mounting Pressures The cybersecurity landscape is evolving at an unprecedented pace...

Exposure Management

Code Security

Code

Resurrecting Shift-Left With Human-in-the-loop AI

January 16, 2025

Let's explore how human-in-the-loop AI can help implement successful secure-by-design.

Exposure Management

Crowdsourced Security

Introducing Lightspark's Public Bug Bounty Program

January 15, 2025

Expanding Our Bug Bounty Program At Lightspark, we’ve always been focused on security that meets...

Security Compliance

Public Policy

A Partial Victory for AI Researchers

January 10, 2025

What is the Digital Millennium Copyright Act and what are the implications of its recent ruling for AI researchers?

Exposure Management

ROI Isn’t Cutting It: 6 Questions to Help CISOs Better Quantify Security Investments

January 7, 2025

However, in cybersecurity, quantifying net profit becomes significantly more complex due to the intangible nature...

Exposure Management

The OWASP Top 10 for LLMs 2025: How GenAI Risks Are Evolving

December 18, 2024

The new OWASP Top 10 for LLMs is here. How has it changed, and how can organizations prevent GenAI risks?

Exposure Management

Breaking Down the OWASP Top 10: Insecure Design

December 17, 2024

Learn about the different types of insecure design vulnerabilities and how to identify them.