HackerOne Blog

The latest from HackerOne

A Call for a New Cybersecurity Measurement Standard

February 26th, 2025

Cybersecurity initiatives provide financial value to organizations. Still, translating the benefits of cybersecurity into dollars and cents has long been a challenge for security teams.

Read Now

All

Culture and Talent

Customer Stories

Engineering

From The CEO

News & Updates

Public Policy

Researcher Community

Security researcher finding IDOR vulnerability

Vulnerability Management

Penetration Testing

How an IDOR Vulnerability Led to User Profile Modification

October 8th, 2024

Learn the ins and outs of IDOR vulnerabilities and how one exploitation led to malicious user profile modification.

Ethical hacker finding broken access control vulnerabilities

How To Find Broken Access Control Vulnerabilities in the Wild

September 30th, 2024

Learn the ins and outs of broken access control vulnerabilities and how to find them in your security research.

Penetration Testing

You're Doing Pentesting Wrong

September 30th, 2024

Pentesting is overdue for a refresh. Leveraging the power of the pentester community and the efficiency of a Pentest as a Service (PTaaS) platform, pentesting can add real value to your organization.

NIS2: Next Step Forward on EU Security Requirements

September 27th, 2024

Everything you need to know about the next NIS2 Directive, what it means for you, and how to be compliant.

A Guide To Subdomain Takeovers 2.0

September 25th, 2024

Learn the ins and outs of understanding subdomain configurations with current resources and tools from an expert security researcher.

AI Safety & Security

How to Streamline Your SDLC With Hai

September 25th, 2024

Hai streamlines the SDLC with the tools to maintain consistency, automate tasks, and improve overall efficiency.

AI Safety & Security

How to Accelerate Vulnerability Remediation with Hai

September 19th, 2024

Hai, HackerOne's AI co-pilot, streamlines remediation efforts and accelerates the find-to-fix process.

Vulnerability Management

Introducing HackerOne Automations

September 16th, 2024

Efficiency and accuracy are crucial in vulnerability remediation. Yet, repetitive and manual handling of tasks...

Vulnerability Management

The Rise of Bug Bounty Programs in S-1 Filings: A New Standard in Corporate Security

September 11th, 2024

Learn why more organizations are including their bug bounty programs in S-1 filings and other corporate disclosures.