HackerOne Blog

The latest from HackerOne

Finding Fast, Fixing Slow: The Rising Exposure Debt

May 6, 2026

Vulnerability submissions are up 76%. Unresolved criticals grew 25x. HackerOne platform data reveals a widening remediation gap that security teams can't afford to ignore.

Read Now

All

CTEM

Cloud Security

Code Security

Crowdsourced Security

Culture & Talent

Defense in Depth

From the CEO

HackerOne News

Offensive Security

Public Policy

Return on Mitigation

Security Compliance

Security Research

Exposure Management

Image showing ServiceNow, GitHub, and Snap logos, along with hacker handles for @rijalrojan and @man4bob.

Crowdsourced Security

Takeaways from a Conversation Between Hackers and Program Managers

July 5, 2023

In our web event “Getting Vulnerable”, we brought together program managers Jill Moné-Corallo from GitHub...

Crowdsourced Security

Grammarly CISO Suha Can Discusses the Impact of Preemptive Security with HackerOne

June 14, 2023

The allure of generative AI and the importance of the basics. While the advent of...

Seven Essential Components Of A Top-Tier Attack Surface Management Program

June 7, 2023

1. Discover and Import Maintaining an up-to-date inventory of all your internet-facing assets is crucial...

Code Security

Audit the Security Posture of DevOps with HackerOne Code Security Audit

June 1, 2023

Use Code Security Audit for DevOps DevOps teams may care about security, but it is...

A Year In HackerOne’s Bug Bounty Program

May 30, 2023

Hackers Report The Most Vulnerabilities In 2022 To Keep The Platform Secure We looked at...

Governments Across The World Are Mandating Vulnerability Disclosure So Why Are Companies Sitting On Their Hands?

Security Compliance

Public Policy

GUEST BLOG: Governments Across The World Are Mandating Vulnerability Disclosure So Why Are Companies Sitting On Their Hands?

May 24, 2023

The IoT Security Foundation’s fifth annual report into the state of vulnerability disclosure consumer Internet...

Exposure Management

GUEST BLOG: Vulnerability Disclosure Adoption In The Consumer IoT space Is Lagging, But What About Elsewhere?

May 19, 2023

There is a lot of focus, rightly so, on the consumer IoT space. We have...

Decoding the HackerOne Code of Conduct

May 16, 2023

When hackers participate in programs on the HackerOne platform, they agree to help empower our...

FDA's New Cybersecurity Requirements: Are You Prepared as a Medical Device Manufacturer?

Security Compliance

Public Policy

FDA's New Cybersecurity Requirements: Are You Prepared as a Medical Device Manufacturer?

May 12, 2023

Where To Begin? Companies submitting products for FDA approval must do the following: Provide details...