Security Compliance
VDPs Are Good For the Government — and Good For Business
Congress recently introduced the Federal Cybersecurity Vulnerability Reduction Act.
Popular posts
The ICO’s 12-Step Guide to GDPR Compliance
Vulnerability Disclosure,
Security Compliance,
Company Resources,
GDPR,
Compliance
Hack The Pentagon Turns One on HackerOne
Ethical Hacker,
Challenge,
News,
Customer Stories,
Bounty
Key Findings From The Hacker-Powered Security Report: It’s Not Just For Tech (1 of 6)
Security Compliance,
Hacker Powered Security Report
Breach Basics: Preparation for the Inevitable
Company News,
Best Practices,
Company Resources
Discover more with topics that matter to you most.
Application Security
Learn how to prevent vulnerabilities in your applications. We cover current practices in application security, cloud security, API testing, and more.
Ethical Hacker
Ethical hackers, pentesters, and security researchers. We explain everything you need to know about them and how they can help your organization.
Company News
Stay informed of HackerOne partnerships, integrations, hackathon results, and other developments that keep HackerOne customers two steps ahead of cybercriminals.
Penetration Testing
Follow the latest practices in penetration testing, including API testing, application testing, external networks, internet-facing infrastructure, and more.
Security Compliance
From FedRAMP to GDPR, we’ll help you understand the security requirements of every compliance and regulatory standard. Learn how you can prove compliance.
Vulnerability Management
We cover everything in vulnerability management including discovery, prioritization, assessment, disclosure, and remediation.
Security Compliance
VDPs Are Good For the Government — and Good For Business
August 28th, 2023
Congress recently introduced the Federal Cybersecurity Vulnerability Reduction Act.
Read More
Security Compliance
Are You Ready for the New NIST Control Around Public Disclosure Programs?
August 14th, 2023
A new NIST control requires SaaS vendors to “establish a public reporting channel for receiving reports of vulnerabilities in organizational systems and system components.”
Read More
Security Compliance
New SEC Cyber Rules Incentivize Proactive Security Measures
August 9th, 2023
SEC’s Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure Rule The SEC’s final rule...
Read More
Security Compliance
Cyber Regulations Can Make Our Nation Safer
March 29th, 2023
While a largely voluntary approach to critical infrastructure cybersecurity has led to some improvements, a...
Read More
Security Compliance,
Ethical Hacker
How Human Security Testing Helps the U.S. Government’s Zero Trust Mandate
January 9th, 2023
One major reason for the progress is a May 2021 Executive Order that pushes federal agencies to speedily...
Read More Get the latest news and insights beamed directly to you
Security Compliance,
Vulnerability Management
What Is a Security.txt File and How Can It Help Your Security Program?
May 27th, 2022
What is a security.txt file and how can it help your program?
Read More
Security Compliance,
Compliance
NIST Overhauls “Security and Privacy Controls” and Emphasizes VDP as a Best Practice
November 2nd, 2020
Back in 2005, the Computer Security Resource Center (CRSC) published NIST 800-53: the “Security and Privacy...
Read More
Security Compliance
8 High-impact Bugs and How HackerOne Customers Avoided a Breach: SQL Injection
November 20th, 2019
This blog series counts down 8 high-impact vulnerability types, along with examples of how HackerOne helped...
Read More