HackerOne Blog

The latest from HackerOne

Pentesting Must Evolve: Continuous Validation at AI Scale, Expert Verified

January 26th, 2026

Traditional pentests can’t keep pace with modern development. Agentic Pentest as a Service delivers continuous, human-validated security at scale.

Read Now

All

Cloud Security

Code Security

Crowdsourced Security

Culture & Talent

Defense in Depth

From the CEO

HackerOne News

Offensive Security

Public Policy

Return on Mitigation

Security Compliance

Security Research

Exposure Management

Culture & Talent

Crowdsourced Security

Bug Bounty

Roni Carta: From Bug Bounties to Building a Safer Supply Chain

October 30th, 2025

A young ethical researcher turned bug bounty reports into a software supply chain startup—no VC funding to date, just curiosity and community.

Hai

Cut the Noise, Keep the Signal: The Hidden Cost of Duplicate Reports

October 29th, 2025

Smarter deduplication turns noise into clarity. Agentic AI streamlines validation, cuts duplicate reports, and helps teams focus on real risk.

Hai

Cyber Reasoning System: The Origin of AI Security and Agentic Defense

October 28th, 2025

DARPA’s Cyber Reasoning System paved the way for agentic AI defenders and why securing AI while using it for defense now go hand-in-hand.

Code

AI Security Findings Are Growing Faster Than Teams Can Fix Them

October 27th, 2025

AI security vulnerabilities are growing 210% faster than teams can fix them. Learn how to close the cybersecurity remediation gap with AI-assisted triage.

Offensive Security

AI Red Teaming

Inside the AI Red Teaming CTF: What 200+ Players Taught Us About Breaking and Defending LLMs

October 23rd, 2025

200+ players, 10 days, 11 challenges. See what the HackerOne × Hack The Box AI red teaming CTF uncovered about breaking and defending LLMs.

Hai

When Every Minute Counts: How Agentic AI Accelerates Exposure Prioritization

October 22nd, 2025

Hai redefines exposure prioritization through agentic AI, validating vulnerabilities, ranking critical risks, and cutting time to response.

Hai

Agentic AI: The Future of Exposure Management

October 15th, 2025

Agentic AI transforms exposure management. Learn how HackerOne’s Hai system streamlines validation, speeds remediation, and strengthens security teams.

AI Security Risks and Vulnerabilities Enterprises Can’t Ignore

September 30th, 2025

Indirect prompt injection, supply chain risks, and data exposure show why AI security is now a board-level issue for enterprises adopting AI.

Public Policy

Pentest as a Service

CMMC 2.0 Final Rule: What Defense Contractors Need to Know

September 25th, 2025

The DoD has finalized CMMC 2.0. Learn what contractors must do to stay compliant with the new rule taking effect November 10, 2025.