How REI Strengthens Security with HackerOne’s Global Security Researcher Community
Q: Please introduce yourself. Tell us what you do at REI and why cybersecurity is important to REI. A: I’m Isaiah Grigsby, a senior application…
Category: Mix
Best Practices for API Discovery and Management
APIs are the backbone of interconnected applications, enabling organizations to innovate, integrate, and scale rapidly. However, as enterprises continue to expand their digital ecosystems, they…
How our new engine framework helped address the critical CUPS vulnerability within the day
When a critical vulnerability in the printing system CUPS started raising alarms among security teams, Detectify had already entered war-room mode to address the situation.…
AI in SecOps: How AI is Impacting Red and Blue Team Operations
Integrating AI into SOCs The integration of AI into security operations centers (SOCs) and its impact on the workforce are pivotal aspects of successful AI…
Flexible Data Retrieval at Scale with HAQL
What is HAQL? Back in 2022, we were faced with a challenge: we wanted to build useful, actionable dashboards for our customers, and we wanted…
How HackerOne Disproved an MFA Bypass With a Spot Check
What Is a Spot Check? A Spot Check is a powerful tool for security teams to do a tightly focused and scoped human-powered assessment with security…
HackerOne’s Fall Day of Service
Employees had the chance to connect over shared goals and values, fostering stronger relationships beyond the workplace. This event generated 13 projects around the U.S.…
Systems Thinking for Cybersecurity Professionals
Editor’s note: I’m thrilled to share a new guest post by my friend Laksh Raghavan. I’ve known Laksh for years, and he has great insights…
Proactive API Security for Modern Threats
There is no doubt that attackers have shifted their attention to APIs. Wallarm’s API ThreatStats research identifies that 70% of attacks now target APIs instead…
Context is King: Using API Sessions for Security Context
There’s no doubt that API security is a hot topic these days. The continued growth in API-related breaches and increase in publicized API vulnerabilities has…
Using the Smartest AI to Rate Other AI
Since early 2023 I’ve wanted a system that can assess how well AI does at a given task. And when I say “system”, what I…
Calculating the Long-Term Business Cost
API attacks can be costly. Really costly. Obvious financial impacts like legal fines, stolen finances, and incident response budgets can run into the hundreds of…