HackerOne Blog

The latest from HackerOne

Finding Fast, Fixing Slow: The Rising Exposure Debt

May 6, 2026

Vulnerability submissions are up 76%. Unresolved criticals grew 25x. HackerOne platform data reveals a widening remediation gap that security teams can't afford to ignore.

Read Now

All

CTEM

Cloud Security

Code Security

Crowdsourced Security

Culture & Talent

Defense in Depth

From the CEO

HackerOne News

Offensive Security

Public Policy

Return on Mitigation

Security Compliance

Security Research

Exposure Management

Offensive Security

AI Red Teaming

AI Red Teaming Explained by AI Red Teamers

January 13, 2026

AI red teamers unpack common misconceptions about AI red teaming and explain its role in securing AI-powered applications.

HackerOne News

Hai

Your Hai Replay: Turning Security Data Into Actionable Insights for 2026

January 12, 2026

Hai Replay turns your security data into clear, actionable insights to guide smarter decisions and planning in 2026.

Offensive Security

How AI Security Is Transforming Offensive Security: Insights to Carry Into 2026

January 6, 2026

HackerOne’s 2025 HPSR highlights the researcher signals shaping modern hacking and the security insights leaders need to prepare for 2026.

Public Policy

Security Research

A Safer Future for Security Research: Landmark Moves in Portugal and the UK

December 18, 2025

Portugal’s Article 7 and the UK’s proposed statutory defence mark major steps toward protecting good-faith security research. Explore how these reforms reduce risk and strengthen coordinated vulnerability disclosure.

Offensive Security

Stanford’s Test Proves the Point: Agentic AI Is Transforming Offensive Security, but Real Defense Still Requires a Hybrid of AI and Human Expertise

December 17, 2025

Independent research shows where agentic AI excels and where human judgment remains essential in penetration testing, underscoring the need for a hybrid security model.

Hai

How We Reached 91% Automated Routing Accuracy in Exposure Management

December 11, 2025

Reliable, 91% accurate routing helps teams cut manual effort, reduce triage overhead, and strengthen vulnerability management across exposure workflows.

Public Policy

What the UK’s New Cyber Security and Resilience Bill Means for Your Organization

December 11, 2025

The UK’s Cyber Security and Resilience Bill expands NIS obligations, updates incident reporting, and raises expectations for resilience across digital services.

CTEM

Exposure Management

7 Predictions Defining the Move to Always-On Cybersecurity in 2026

December 9, 2025

Security leaders forecast 2026 as the year CTEM becomes essential, with AI-driven threats, agentic security, and continuous validation reshaping cyber risk.

Code Security

CVE-2025-55182: Unauthenticated React Exploit Affects Millions of Sites

December 5, 2025

A critical CVE-2025-55182 React RCE flaw affects millions of sites. Get impact details, affected versions, indicators of compromise, and urgent remediation steps.