Skip to main content

HackerOne Blog

Read the HackerOne blog to learn the latest in hacker-powered security testing. Improve your security profile and follow current industry trends.

The Global Top 10 is a valuable resource and can help organizations prioritize reported vulnerabilities.
Vulnerability Management

The HackerOne Global Top 10—Hacker Expertise, Industry Data, and Up-to-Date Vulnerabilities

Many security teams use the OWASP Top 10 as a guideline to understand where they should focus their security strategies and cyberattack prevention...

Hackerone Vulnerability Remediation
Vulnerability Management, Vulnerability Disclosure, Bounty

HOW DIGITAL TRANSFORMATION CHANGES AN ORGANIZATION'S SECURITY CHALLENGES

Last week, HackerOne joined WhiteSource, AWS, and IGT for a roundtable discussion about the new security...
data driven
Vulnerability Management

MICROSOFT SAYS: RUSSIAN SOLARWINDS HACKERS HIT U.S. GOVERNMENT AGENCIES AGAIN

According to the New York Times, Microsoft says the state-backed Russian hacker group Nobelium—the same actor...
Spotlight on the Server-Side
Application Security, Data and Analysis

Spotlight on the Server-Side

Server-side request forgery (or SSRF) vulnerabilities are particularly dangerous because they can lead to...

The 5 Secrets of a Mature Vulnerability Management Program
Vulnerability Management, Customer Stories

The 5 Secrets of a Mature Vulnerability Management Program

During HackerOne's recent series of webinars, we caught up with Matt Southworth, CISO of Priceline, and Matt...

A Security Engineer and Hacker Share Their Experiences with Security Assessments
Ethical Hacker, Customer Stories, Best Practices, Expert Interviews, Events

A Security Engineer and Hacker Share Their Experiences with Security Assessments

A few weeks ago, HackerOne and PortSwigger teamed up to shine a light on the innovative ways that customers...

Saxo Bank Celebrates One Year of Bug Bounties
Vulnerability Management

Saxo Bank Celebrates One Year of Bug Bounties: Q&A with CISO Mads Syska Hasling

Q: Tell us a bit about yourself. A: I’m Mads Syska Hasling, CISO at Saxo Bank. I run the first-line security...
How HackerOne Helps the Vulnerability Management Process
Vulnerability Management, Best Practices, Events

How HackerOne Helps the Vulnerability Management Process

HackerOne sees vulnerability management as a process combining software tools and security analyst actions to...

Reddit's Bug Bounty Program Kicks Off
Application Security, Bounty, New Program Launch

Reddit's Bug Bounty Program Kicks Off: Q&A with Reddit's Allison Miller and Spencer Koch, and Top Program Hacker @RENEKROKA

HackerOne sat down with Reddit’s CISO and VP of Trust, resident Security Wizard, and top hacker to discover...