HackerOne Blog

The latest from HackerOne

Finding Fast, Fixing Slow: The Rising Exposure Debt

May 6, 2026

Vulnerability submissions are up 76%. Unresolved criticals grew 25x. HackerOne platform data reveals a widening remediation gap that security teams can't afford to ignore.

Read Now

All

CTEM

Cloud Security

Code Security

Crowdsourced Security

Culture & Talent

Defense in Depth

From the CEO

HackerOne News

Offensive Security

Public Policy

Return on Mitigation

Security Compliance

Security Research

Exposure Management

Code Security

What We Can Learn from the Ruby on Rails Project about Code Review

January 11, 2022

About the author Will Barrett is a Software Engineer, Technical Lead, and Engineering Manager from...

Code Security

5 Ways I Provide Value as a PullRequest Reviewer When I Start Reviewing a New Project

January 6, 2022

About the author Will Barrett is a Software Engineer, Technical Lead, and Engineering Manager from...

Log4J webinar with Chris Evans and Jobert Abma

Exposure Management

Log4Shell: Attack Evolution

January 6, 2022

For many security teams, the holiday season was spoiled by the challenging remediation of Log4Shell...

Code Security

How to Catch Broken Access Control Security Vulnerabilities in Code Review Part 2

January 4, 2022

About the author Will Barrett is a Software Engineer, Technical Lead, and Engineering Manager from...

Code Security

How to Catch the Top OWASP 2021 Security Category - Broken Access Control - in Code Review

January 2, 2022

About the author Will Barrett is a Software Engineer, Technical Lead, and Engineering Manager from...

Learn the top five takeaways from the 2021 Hacker-Powered Security Report

Security Research

Top 5 Takeaways from the 2021 Hacker-Powered Security Report: Industry Insights

December 21, 2021

For the fifth year in a row, HackerOne published a report that provides insights from...

Code Security

Tips for Migrating to a New Computer for Programmers

December 19, 2021

About the author Will Barrett is a Software Engineer, Technical Lead, and Engineering Manager from...

Exposure Management

CWE (Common Weakness Enumeration) and the CWE Top 25 Explained

December 16, 2021

Common Weakness Enumeration (CWE) is a system to categorize software and hardware security flaws—implementation defects...

Code Security

The Top 5 Most Common Security Issues I Discover When Reviewing Code

December 15, 2021

About the author Will Barrett is a Software Engineer, Technical Lead, and Engineering Manager from...