Network and Information Systems Directive (NIS2) Compliance: What You Need to Know
This blog will break down the NIS2 Directive drawing information from the original directive briefing published by the European Parliament...
Read more →Category: Mix
Why Retail and E-commerce Organizations Trust Security Researchers During the Holiday Shopping Season
Retail and e-commerce organizations are major targets this time of year, which is why proactive security testing is essential to...
Read more →
Is Your Security Ready For Bug Bounty? [5 Questions]
1. Are You Prepared to Manage Incoming Vulnerability Reports? Naturally, the purpose of running a bug bounty program is to...
Read more →
Hai’s Latest Evolution: Intelligence, Context, and More Intuitive UX
Transforming Security Program Management: A Day with Hai Picture this: It’s Monday morning, and your dashboard shows fifteen new vulnerability...
Read more →
Harnessing the Working Genius for Team Success
Employees at HackerOne utilize the Working Genius model, which provides individuals and teams with a straightforward, practical, and effective framework...
Read more →
Hack My Career: Saskia Braucher
When Saskia joined the tech world, she didn’t follow the conventional path of computer science degrees or coding boot camps....
Read more →
New Guidance for Federal AI Procurement Embraces Red Teaming and Other HackerOne Suggestions
Earlier this year, the Office of Management and Budget (OMB), which establishes budget rules for federal agencies, issued a memorandum...
Read more →
Six Years of Proactive Defense: Deribit’s Journey with HackerOne
Q: Why did Deribit launch a bug bounty program? A: I like to view security as an onion where each...
Read more →
Introducing the Wells Fargo Public Bug Bounty Program
Since then, we’ve grown the program, collaborated with HackerOne, and built partnerships within the bug bounty community. The valuable insights...
Read more →
How Crypto and Blockchain Organizations Manage Complex Attack Surfaces With Competitive Security Testing Programs
There are three factors that differentiate crypto and blockchain organizations from other industries; their attack surfaces, their most common vulnerabilities,...
Read more →
How a Privilege Escalation Led to Unrestricted Admin Account Creation in Shopify
In a privilege escalation attack, an attacker gains elevated rights, permissions, or entitlements beyond the intended level associated with their...
Read more →
New York Releases AI Cybersecurity Guidance: What You Need to Know
AI adoption is accelerating in the financial services industry, both as an asset for improving business operations and as a...
Read more →