Heads Up Hackers: An Update from Our Mediation Team
Evolving the HackerOne Support Experience We are excited to announce that, after many years of using ZenDesk as a Support ticketing tool, HackerOne is moving…
Category: Mix
New security test: CVE-2019-11043 PHP-FPM & NGINX RCE
tl;dr – CVE-2019-11043 PHP-FPM & NGINX RCE was publicly disclosed and a Proof-of-Concept exploit code was made available on GitHub. We received the report from…
Bug Bounty vs. CTF [Understanding Differences & Benefits]
What Are the Differences Between a Bug Bounty and CTF? A bug bounty is a financial reward a company offers to ethical hackers for discovering…
How HackerOne Positively Influences Zebra’s Software Development Life Cycle
HackerOne’s Platform Catches Everything Organizations can ensure that security testing is a continuous process by combining regular pentests with bug bounty and VDPs. Some companies…
Detectify secures €21,5 million in Series B round to bring world-class cyber security to everyone
Stockholm, Sweden. November 26, 2019 – Detectify, today announces a successful Series B round of €21,5 million led by venture capital firm Balderton Capital, and…
How the Industry’s First Hacker-Powered API Helps Hackers Automate Workflows
Today, HackerOne is launching the industry’s first hacker API. This release is now out of beta and is available to the hacker community. It includes…
What Are Bug Bounties? How Do They Work? [With Examples]
How Do Bug Bounties Work? Companies create bug bounties to provide financial incentives to independent bug bounty hunters who discover security vulnerabilities and weaknesses in…
Guest blog: streaak – my recon techniques from 2019
Detectify Crowdsource hacker Akhil George, aka streaak, is a full-time student who chases bug bounties during his free time. His hacking interests started with CTF…
How to Use HackerOne and PagerDuty to Identify When Vulnerabilities Need Action
HackerOne and PagerDuty have partnered to create a workflow automation integration that feeds critical and high severity vulnerability findings into PagerDuty alerts to notify security…
Web security trends to watch for 2020
What are web security trends for 2020? This year we anticipate the build-up of a new security market category, growing targets in automation, a new…
What We Can Learn From Recent Ransomware Attacks
Earlier this month, software vendor Kaseya made headlines when a vulnerability in its Virtual System Administrator (VSA) software led to an epidemic of the REvil…
M. Loewinger, Smartbear: “Each product has a DevOps lead who manages Detectify and all its findings”
Detectify user story: Smartbear offers automated software testing solutions that help development and testing teams ensure quality throughout the software development lifecycle. Martin Loewinger, Director…