Hacking Dropbox Live in the Heart of Singapore at h1-65

Dropbox joined us as the participating company, paying out over $330,000 in bounties to hackers who found 264 vulnerabilities across Dropbox, Dropbox Paper, newly-acquired HelloSign, and third-party vendors that work with Dropbox.


https://www.hackerone.com/ethical-hacker...pore-h1-65

See Your Success In Real Time with the new Program Dashboard

Effective security programs are more efficient when backed with clear reports that both technical and business teams understand. The HackerOne program dashboard delivers real-time insights into the program metrics that matter most to your programs, such as submission status, bounty spent, exploit severity, asset weaknesses, program health, and more.


https://www.hackerone.com/vulnerability-...-dashboard

Taking The Guesswork Out of Vulnerability Reporting

To make vulnerability disclosure easier on open source maintainers, GitHub and HackerOne are collaborating to help close the gap between the hacker community and software engineers.


https://www.hackerone.com/vulnerability-...-reporting

Automate Workflows with Enhanced Jira Integration

Integrating with Jira has always been an important piece of integrating HackerOne into the SDLC of our customers. HackerOne’s bi-directional Jira integration is currently in use by many of our customers and today we’re announcing how it’s getting even better.


https://www.hackerone.com/application-se...ntegration

Grand Rounds VP InfoSec: Achieving SOC 2 Type II Compliance with Hacker-Powered Secu

Grand Rounds is an innovative new healthcare company using hacker-powered security for better, more effective pen tests. Learn how HackerOne Compliance meets HIPPA, SOC2, and other security testing needs.


https://www.hackerone.com/security-compl...er-powered

When Moving To the Cloud, Don’t Leave Basic Security Behind

How to break into a serverless application, a TestLabs blog review. We’ll also discuss why changes in technology don’t change security best practices.


https://www.hackerone.com/application-se...ity-behind

Cloud Security Alliance Webinar Recap: Avoid the Breach with Shopify’s Andrew Dunb

Security is a top priority for e-commerce giant Shopify, with over 600,000 businesses in 175 countries trusting them to sell online and everywhere in the world. Shopify's Vice President of Security Engineering and IT, Andrew Dunbar and HackerOne’s Luke Tucker discuss best practices for testing and securing cloud-based web applications.


https://www.hackerone.com/application-se...rew-dunbar

Improving Your Workflows and Analysis with Custom Fields

HackerOne is thrilled to release Custom Fields, the latest way to sharpen security workflows and software development cycles. Custom Fields empowers teams to gain new insights into data by adding details such as ownership, risk category and root cause to vulnerability reports.


https://www.hackerone.com/vulnerability-...tom-fields

The HackerOne Top 10 Most Impactful and Rewarded Vulnerability Types

We’ve put together a list of the most impactful vulnerabilities on the HackerOne platform so you can see where to aim your security efforts and how to better align your security team to today’s biggest risks. Learn which vulnerabilities aren’t in the OWASP Top 10 and see the top vulnerabilities submitted by volume, bounty awards, and more.


https://www.hackerone.com/vulnerability-...lity-types

Breaking Down the Benefits of Hacker-Powered Pen Tests

Breaking down the benefits of hacker-powered pen tests from the recent Forrester report. The most important benefit was finding more vulnerabilities, both in terms of numbers and criticality, in order to remediate them and create better system security.


https://www.hackerone.com/penetration-te...-pen-tests