Announcing Hai Plays: Personalize Your Playbook for Spot-On Security Advice
Take Precision to the Next Level—Beyond Basic AI Efficiency and precision are critical in every operation. However, many security teams face the challenge of repeatedly…
Category: Mix
Capital One Launches Public Bug Bounty Program with HackerOne
What’s New? We at Capital One strongly believe in the importance of security, and part of our mission is to protect our customers and their…
From Prospect to Partner: Jon Stone Shares HackerOne Career Story
At HackerOne, SDRs focus on prospecting, qualifying leads, and setting up meetings for AEs, while developing these skills to take on more responsibilities, including closing deals…
My Current Favorite AI Prompt
.bh__table, .bh__table_header, .bh__table_cell { border: 1px solid #C0C0C0; } .bh__table_cell { padding: 5px; background-color: #FFFFFF; } .bh__table_cell p { color: #2D2D2D; font-family: ‘Helvetica’,Arial,sans-serif !important; overflow-wrap:…
Hacking misconfigured AWS S3 buckets: A complete guide
AWS S3 (Simple Storage Service) buckets are a popular storage service used by software companies and organizations to store public as well as sensitive data.…
Quantifying the Value of Bug Bounty Programs: ROI, ROM, or Both?
HackerOne customers consistently factor in cost savings when measuring the success of their security engagements, with 59% valuing the estimated savings of reputational or customer-related incidents…
Crushing FUD: Embracing Ethical Hackers to Strengthen Cybersecurity
What is FUD? Fear, Uncertainty, and Doubt (FUD), are central blockers to high-efficacy security programs by creating a climate of fear and hesitation, which impedes…
API Attack Surface: How to secure it and why it matters
Managing an organization’s attack surface is a complex problem involving asset discovery, vulnerability analysis, and continuous monitoring. There are multiple well-defined solutions to secure the…
HackerOne’s Commitment to Learning and Development
HackerOne is committed to providing comprehensive learning and development opportunities to fuel our competitive edge and cultivate a highly skilled and deeply motivated workforce. Why…
Evolution of Attack Surface Management
The Early Days: Basic Asset Management While it was not called ASM, the concept of managing attack surface management began with basic asset management practices…
How Hai Facilitates Clear and Effective Communication
The Communication Challenge in Cybersecurity The vulnerability management process involves various stakeholders, each with their own expertise and communication styles. Security teams focus on identifying…
Pentesting for iOS Mobile Applications
Pentest reports are a requirement for many security compliance certifications (such as GDPR and HIPAA), and having regular pentest reports on hand can also signal to high-value customers…