The Voices of Vulnerability Disclosure: Look Who’s Talking About VDPs
The attention being given to vulnerability disclosure policies (VDP) in the past year has increased dramatically. It might be the...
Read more →Category: Mix
Breach Basics: Preparation for the Inevitable
Data breaches in information security have become an inescapable reality. A common inquiry we receive here at HackerOne is for...
Read more →
The ICO’s 12-Step Guide to GDPR Compliance
When the European General Data Protection Regulation (GDPR) takes effect on May 25, 2018, every organization that collects information on...
Read more →
KPMG’s Cyber Security Expert Offers Advice for Bug Bounty Success
Before you propose a bug bounty program to your organization, you need a comprehensive plan. That’s just one of the...
Read more →
Why Riot Games Pays Hackers to Break Them
In the League of Legends world, your nexus is protected from outside threats by a strong team of diverse champions....
Read more →
SQL Injection in 1 min!
A lot could go wrong on the internet! A clever attacker can with ease gather all the intelligence he/she needs...
Read more →
AlienVault streamlines their vulnerability disclosure with HackerOne Response
Like many organizations, AlienVault had set up a vulnerability disclosure policy for any bugs found on their website. If someone...
Read more →
The basics of Cross-site Scripting (XSS)
A lot can go wrong on the Internet and XSS is without a doubt one of the most common web...
Read more →
The European Commission’s First-Ever Bug Bounty Program
The European Commission has selected HackerOne as the platform for their first ever bug bounty program. This not only expands...
Read more →
The basics of Local File Inclusions
Local File Inclusion is quite simply the act of including files that are stored on the web server you are...
Read more →
Hacking the U.S. Air Force (again) from a New York City subway station
New York City during the holidays. Magical. Bringing together hackers from around the world to legally hack the U.S. Air...
Read more →
Malicious Data Mining @ HyperIsland
Johan Edholm and I (Fredrik Nordberg Almroth) had a talk a while back at HyperIsland, Stockholm (the 18’th of October) for the DDS13 group....
Read more →