How much is a bug worth? Introducing Bounty Statistics
Ever wondered how much you should reward a hacker? Too little and you risk offense, too much and you set the wrong expectations. What do…
Category: Mix
Hacker Herding – Bug Bounty Tips from Sky Betting & Gaming
UK-based Sky Betting & Gaming recently launched their own bug bounty program and shared some tips in a blog post: Hacker Herding – Ten Lessons…
Celebrating Alongside Yelp: Reaching The 100 Day Milestone of Their Public Bug Bounty Program
Approximately 100 days ago, Yelp flipped the switch from being a private bug bounty program on HackerOne, to a public program. To commemorate, Yelp Software…
Together We Hit Harder – HackerOne Company Values
HackerOne’s mission is to empower the world to build a safer internet. All of us HackerOnies are driven by a passion for our mission, and…
VR Hacking| Concerns Regarding the Rise of Virtual Reality
2017 may be the year Virtual Reality and Augmented reality truly go mainstream. But is it airtight from a security perspective? Well, the immediate answer…
Advanced Workflows with Inbox Views
By default, HackerOne offers a standard vulnerability disclosure workflow that supports most security teams out there. But one size doesn’t fit all. We all like…
Vulnerability Reporting – Lack of Corporate Security Reporting
Recently, McDonald’s customers were placed at risk unnecessarily due to the lack of a clear vulnerability disclosure process. What if they had had a “security@”…
Q&A With PortSwigger’s James Kettle: Bug Bounties, Exploit Stories, and More!
As 2016 came to a slow-burning close, the gang at PortSwigger debuted its public bug bounty program on HackerOne. We’re super excited to be partnering…
Hack The Army Results Are In
The Defense Digital Services (DDS) group is tasked with pioneering private sector solutions to solve some of the Department of Defense’s most complex problems. And…
Bug Bounties Help Keepsafe Secure The Data of 50 Million Consumers
Keepsafe is on a mission to help us keep our private lives as they should be – private. To date, over 50 million consumers trust…
Flexport leverages bug bounty programs to secure their customers highly confidential shipping data
Bloomberg called them “Uber of the Oceans,” and we think that’s a nifty way to describe the international freight forwarder and customs broker, Flexport. In…
RSA stands for Really Sweet Activities: HackerOne recaps an epic week
Two weeks ago was my first RSA Conference experience and I survived to write this post. Conferences are a forcing mechanism of sorts, an accelerant…