Introducing the 4th Annual Hacker-Powered Security Report
This is a time of unprecedented challenges. We face never-before- seen threats in the digital and physical worlds. If this past year has taught us…
Category: Mix
A security overview of Content Management Systems
Any developer would probably agree Content Management Systems (CMS) make it easier for web development teams and marketing to work together. However CMS assets like blog.company.com…
AT&T Celebrates $1 Million Awarded to Hackers in One Year
AT&T Communications recently celebrated its first anniversary on HackerOne, passing $1 million in payouts to more than 850 researchers worldwide. The HackerOne program is a…
[PoC Video] jQuery-File-Upload: A tale of three vulnerabilities
TL;DR Three vulnerabilities in the second most starred Javascript repository on Github which two of them are remote code execution and the third makes it…
HackerOne Integrates with ServiceNow to Streamline Vulnerability Lifecycle Management
We’re excited to announce our integration with ServiceNow Incident Management. This integration allows customers to escalate vulnerability reports with ServiceNow incidents and synchronize any updates…
Detectify security updates for 13 December
For continuous coverage, we push out major Detectify security updates every two weeks, keeping our tool up-to-date with new findings, features and improvements sourced from…
Bug Bytes #198 – Hackers go to RSA/BSides and CPanel gets pwned
Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The second series is curated by InsiderPhD. Every week, she keeps…
HackerOne Expands Integrations Ecosystem to Connect and Defend Customers
Revealed at Security@, HackerOne adds PagerDuty, ServiceNow, Splunk, SumoLogic to advance workflows HackerOne, the world’s most trusted hacker-powered security platform, today introduced a set of…
Organizations Paid Hackers $23.5 Million for These 10 Vulnerabilities in One Year
In times of uncertainty, security becomes an ever more pressing priority. The stakes are high: organizations are more reliant on technology than ever and anyone…
Snap’s Security Team on Nearly 6 Years of Collaborating with Hackers
As a popular camera and messaging platform, Snapchat is responsible for properly handling data for 249 million users daily. The Snap bug bounty program launched…
Meet the Hacker: europa: “I always trust my gut when I get the feeling that something is there”
Meet the hacker europa, a white hat hacker on the Detectify Crowdsource platform. He is based in Italy with a great passion for infosec and…
NIST Overhauls “Security and Privacy Controls” and Emphasizes VDP as a Best Practice
Back in 2005, the Computer Security Resource Center (CRSC) published NIST 800-53: the “Security and Privacy Controls for Information Systems and Organizations” publication. This Special…