Blog Posts

The latest & greatest from the HackerOne blog.

  • Hacker Spotlight: Interview with samengmg

    Hacker Spotlight: Interview with samengmg

    Samuel Eng (also known as @samengmg), a 30-year old hacker from Singapore, is one of the top performing hackers on our recent Singapore Government Technology Agency (GovTech) bug bounty program....

    Read Article
  • LINE on Securing the Application Development Lifecycle with Bug Bounties

    LINE on Securing the Application Development Lifecycle with Bug Bounties

    Based in Japan, LINE Corporation is dedicated to the mission of “Closing the Distance,” bringing together information, services and people. The LINE messaging app launched in June 2011, offering...

    Read Article
  • What Years of AWS Hacking Tells Us About Building Secure Apps

    What Years of AWS Hacking Tells Us About Building Secure Apps

    Imagine being part of an organization that has a security team that manages risks by saying “no” to change in an era of cloud migrations, remote-first work, and increased dependency on our digital...

    Read Article
  • Hacker Spotlight: Interview with jin0ne

    Hacker Spotlight: Interview with jin0ne

    @jin0ne is only 20-years-old, and he is already one of the highest performing hackers on the HackerOne platform! He has submitted more than 200 valid vulnerabilities in just one year and  taught...

    Read Article
  • Hacker Spotlight: Interview with benteveo

    Hacker Spotlight: Interview with benteveo

    Pedro Worcel, aka @benteveo, has over a decade of experience in the IT industry, including several years as a programmer in Java, PHP, Python and C++. He has developed many software solutions but...

    Read Article
  • Grab Celebrates 5 Years on HackerOne

    Grab Celebrates 5 Years on HackerOne

      Just five years ago, leading rideshare, food delivery, and payments company Grab, became one of the first companies in Southeast Asia to implement a hacker-powered security program. Though it...

    Read Article
  • HackerOne Policies Update

    HackerOne Policies Update

      Introduction: During November of this year, you may have noticed a new page on HackerOne: hackerone.com/policies. This page contains the Code of Conduct and other behavioral guidelines for...

    Read Article
  • The World’s Largest Live Hacking Event

    The World’s Largest Live Hacking Event

    h1-2010 Live Hacking Video Recap Thu, 12/10/2020 - 18:43 Sam Spielman How can we make...

    Read Article
  • Hacker Spotlight: Interview with tolo7010

    Hacker Spotlight: Interview with tolo7010

      While he may keep a low profile, @Tolo7010 makes a big impact on the organizations he hacks.  Tolo7010 discovered hacking by accident a decade ago when he bought a “Hacker's Hideout” CD...

    Read Article
  • Quantifying Risk: How do you measure success in security?

    Quantifying Risk: How do you measure success in security?

    Every quarter, a CISO has to stand up in front of their leadership and attempt to put a price on something that didn’t happen. When your job is all about avoiding costly incidents and mistakes,...

    Read Article
  • 12 Days of Hacky Holidays CTF

    12 Days of Hacky Holidays CTF

    Dear hackers,  The Grinch has gone hi-tech this year with the intentions of ruining the holidays and we need you to infiltrate his network and take him down!  Starting at 12pm PT on Saturday,...

    Read Article
  • VDPs are at the Heart of the Australian Cyber Security Centre’s Recommendations

    VDPs are at the Heart of the Australian Cyber Security Centre’s Recommendations

    2020 has been an important year for VDP standardization worldwide. Earlier in the year, the U.S. saw the release of the Cybersecurity and Infrastructure Security Agency (CISA)’s Binding...

    Read Article
  • Hacker Spotlight: Interview with jensec

    Hacker Spotlight: Interview with jensec

    Hackers from India accounted for 18% of the total reports submitted to HackerOne customer programs in the past year, earning $3.5M from bounty awards. One of those hackers is Jenish Sojitra, also...

    Read Article
  • HackerOne Joins AWS Marketplace as Cloud Vulnerabilities Rise

    HackerOne Joins AWS Marketplace as Cloud Vulnerabilities Rise

    Addressing security risks at scale is more important than ever. With a global pandemic accelerating digital transformations, organizations are shipping new products and services at a faster clip,...

    Read Article
  • Announcing the HackerOne Brand Ambassadors

    Announcing the HackerOne Brand Ambassadors

    Hacker Brand Ambassadors are leaders who have a passion to bring the community together in their local city or region. We are excited to announce the first group of ambassadors who were chosen...

    Read Article
  • Hacker Spotlight: Interview with bagipro

    Hacker Spotlight: Interview with bagipro

    Mobile hacking has become an essential part of the bug bounty hunter’s tool belt, and no one knows the space better than Russian Android hacker Sergey Toshin, aka @bagipro. With years of...

    Read Article
  • US Government Mandates Vulnerability Disclosure for IoT

    US Government Mandates Vulnerability Disclosure for IoT

    This year has seen a rapid acceleration in the American government’s efforts to secure federal and state cyber infrastructure. This momentum has continued with the unanimous passing of the...

    Read Article
  • Hacker Spotlight: Interview with insiderphd

    Hacker Spotlight: Interview with insiderphd

    When Katie Paxton-Fear, aka @InsiderPhD, was invited to be a mentee at the HackerOne live event in London, h1-4420, for the first time, little did she know her life was about to change. She found...

    Read Article
  • Hacker Spotlight: Interview with fisher

    Hacker Spotlight: Interview with fisher

    Miguel Regala, also known as @fisher, describes himself as “half hacker, half daydreamer”. He is living proof that when done well, daydreaming results in greater levels of creativity and...

    Read Article
  • Announcing new leaderboards: More ways to engage, compete and win

    Announcing new leaderboards: More ways to engage, compete and win

    Leaderboards are a fun way to measure your hacking progress and understand how you compare to the broader HackerOne community and to engage through competition. Historically, we’ve had only one...

    Read Article
  • loading
    Loading More...