Breaking Down the OWASP Top 10: Insecure Design
In the absence of these considerations, systems can be retrofitted with ineffective security controls or lack them entirely. This can...
Read more →Category: Mix
The OWASP Top 10 for LLMs 2025: How GenAI Risks Are Evolving
Here is HackerOne’s perspective on the Top 10 list for LLM vulnerabilities, how the list has changed, and what solutions...
Read more →
ROI Isn’t Cutting It: 6 Questions to Help CISOs Better Quantify Security Investments
However, in cybersecurity, quantifying net profit becomes significantly more complex due to the intangible nature of its benefits and the...
Read more →
A Partial Victory for AI Researchers
HackerOne has partnered with security and AI communities to advocate for stronger legal protections for independent researchers. Most recently, HackerOne...
Read more →
Introducing Lightspark’s Public Bug Bounty Program
Expanding Our Bug Bounty Program At Lightspark, we’ve always been focused on security that meets and exceeds industry standards. We’ve...
Read more →
Resurrecting Shift-Left With Human-in-the-loop AI
What’s Needed for Secure by Design Success We spent years understanding the culprits of why “shift-left” controls fail to identify...
Read more →
Hope in the Fight Against Cyber Threats: A New Year’s Message to CISOs
Facing the Reality: Cybersecurity’s Mounting Pressures The cybersecurity landscape is evolving at an unprecedented pace. This past year, breaches resulting...
Read more →
A Practical Guide to Investigating IoT Devices with the SecurityTrails API
The last decade is arguably one of exceptional growth and transformation, with technologies like the Internet of Things (IoT) leading...
Read more →
Hope in the Fight Against Cyber Threats: A New Year’s Message to CISOs
Facing the Reality: Cybersecurity’s Mounting Pressures The cybersecurity landscape is evolving at an unprecedented pace. This past year, breaches resulting...
Read more →
Sending Billions of Daily Requests Without Breaking Things with our Rate Limiter
At Detectify, we help customers secure their attack surface. To effectively and comprehensively test their assets, we must send a...
Read more →
Fast vs. Slow AI | Daniel Miessler
Augmented vs. Natural Having used hundreds (and built dozens) of AI applications since late 2022, I’ve come to realize something...
Read more →
Your bug bounty journey, our priority
The foundation of a successful partnership is a shared commitment to mutual growth – this is something we firmly believe...
Read more →