Blog | HackerOne

Solutions
- Initiatives
  - Business Initiatives
    What is your cybersecurity need?
  - Secure the Attack Surface
    Protect your evolving assets.
  - Secure Software Development
    Scale app security across the SDLC.
  - Digital Brand Trust
    Build your brand and protect your customers.
  - Ensure Compliance
    Meet compliance requirements and more.
  - Hidden Placeholder
    Hidden Placeholder
- Industries
Products
- Explore
  - Explore the Products
    Reshaping the way companies find and fix critical vulnerabilities before they can be exploited.
  - Security Assessments
    Test your organization's security preparedness with HackerOne Assessment.
    
    Pentest
    Establish a compliant vulnerability assessment process.
  - Response
    The first step in receiving and acting on vulnerabilities discovered by third-parties.
  - Bounty
    Continuous testing to secure applications that power organizations.
  - Clear + Gateway
    Highly vetted, specialized researchers with best-in-class VPN.
  - Services
    Enhance your hacker-powered security program with our Advisory and Triage Services.
Why HackerOne
- For Business
- For Hackers
Company
- About HackerOne
- In the News
  - Press
  - Press Archive
Resources
- Resources
- Events
  - Events
  - Security@ Conference
Contact Us

From The CEO

Time to Issue Your Own Cyber Executive Order

Time is not kind to the security of an organization. The longer you wait, the weaker you are. The more things drag out, the higher the risk of breach. Delays in responding to threats, incidents, and compromises mean exponential cost increases.

Browse by Category

Recent Posts

Hacker Spotlight AMA: none_of_the_above

This week’s Hacker Spotlight features @none_of_the_above, a Latin American hacker who shares his tips to succeed in cybersecurity.

April 16, 2021 HackerOne

Reddit’s Public Bug Bounty Program Kicks Off: Q&A with Reddit’s Allison Miller and Spencer Koch, and top program hacker @renekroka

HackerOne sat down with Reddit’s CISO and VP of Trust, resident Security Wizard, and top hacker to discover the secrets to Reddit’s bug bounty success, explore their goals and key results, delve into how they use hackers to scale security across software development, and gain a unique perspective about what it’s like to hack one of the world’s leading social networks.

April 14, 2021 HackerOne

Hacker Spotlight AMA: niemand_sec

Pentester, independent consultant and bug hunter, @niemand_sec is featured in this week’s edition of Hacker Spotlights.

April 9, 2021 HackerOne

Security@ 2021 Call for Speakers is Open

HackerOne’s global hacker-powered security conference, Security@, is back for its fifth year. This year’s virtual event will take place September 20, 2021. The call for speakers is now open! You have until May 15, 2021, to submit your talk.

April 5, 2021 HackerOne

The Rise of IDOR

Insecure Direct Object References (or IDOR) is a simple bug that packs a punch. Discover where they’re most common, explore real-world examples, and learn prevention tips from hackers.

April 2, 2021 HackerOne

Hacker Spotlight: Interview with edduu

Latin America hacker, @edduu shares his in-depth thinking on how to maximize reports for larger bounty earnings and what it means to be a hacker in Latin America.

April 2, 2021 HackerOne

Hacker Spotlight: Interview with manoelt

Brazillian CTF player and hacker, @maneolt is featured in this week’s Hacker Spotlight.

March 26, 2021 HackerOne

Hacker Spotlight: Interview with p3rr0

Latin America based hacker, @p3rr0 shares his story from not knowing about bug bounties to making an income.

March 19, 2021 HackerOne

Hacker Spotlight: Interview with Samux

Hacker from Santiago, Chile shares his journey in pentesting and bug bounties in this edition of Hacker Spotlights.

March 12, 2021 HackerOne

Discovering Three Personas within the Hacker Community

With over one million hackers making up the HackerOne community, there’s more diversity of skill, approach, and personality than any security team in the world. At the launch of the 2021 Hacker Report, we catch up with three hackers, representing three very different approaches to hacking: the pentester, the VDP hacker and the bounty hunter.

March 9, 2021 HackerOne