The Paranoids at Oath Take Bug Bounties to Argentina: h1-5411 Recap

HackerOne kicked off its first South America live hacking event in Buenos Aires, Argentina! Oath, a media and tech company, under which Yahoo, AOL, Verizon Digital Media Services, TechCrunch and many more dynamic brands fall, opened up their assets to 53 hackers in their second live hacking event in 2018. Eight hours later, Oath had paid out over $260,000 in bounties to hackers for their contributions. Thank you to our hackers that literally weathered a storm to join us in Argentina for the first time.


https://www.hackerone.com/vulnerability-...5411-recap

The Best is Yet To Come: DOD Awards New Hack the Pentagon Contract to HackerOne

Today we celebrate cyber defense. The U.S. Department of Defense’s Defense Digital Service (DDS) announced expansion of the Hack the Pentagon crowdsourced security program and partnership with HackerOne. HackerOne is one of three vendors to be awarded a contract as part of the Hack the Pentagon expansion to run private assessments against sensitive, internal systems.


https://www.hackerone.com/ethical-hacker...-hackerone

Financial Services: Tips for Bug Bounty Success

Jason Pubal is an appsec director at a large financial services firm. Over the past 2 years, he’s prepared for and rolled out a successful bug bounty program with HackerOne. Here’s what he’s learned in the process and how you can prepare to launch your own bug bounty program.


https://www.hackerone.com/application-se...ty-success

What To Do When You're Stuck Hacking

Hacking can be tedious work. Sometimes you’re looking for hours, perhaps days, and you’re unable to find a security vulnerability. It can be demotivating at times. This blog will give you multiple tips to power through it and regain that sweet, sweet feeling of submitting a security vulnerability.


https://www.hackerone.com/ethical-hacker...ck-Hacking

Discovering programs is easier than ever with the new and improved Program Directory

Today, we’re excited to announce a complete overhaul of our Program Directory! The new directory features a fresh design and more granular filters to find programs faster than ever. Let us know what you think!


https://www.hackerone.com/vulnerability-...-Directory

Security@ 2018: Sumo Logic’s CSO On Transparency and Using Hacker-Powered Pen Test

At Security@ 2018, held in San Francisco in late October, Gerchow took the stage to share how Sumo Logic works with HackerOne to take a decidedly modern approach to security, using bug bounties as a tool in the arsenal and transparency as the common thread. Transparency, according to Gerchow, means that organizations must admit not only that bugs will always exist, but that the best ways to reduce vulnerabilities is to share learnings and best practices with the broader community.


https://www.hackerone.com/penetration-te...-pen-tests

Security@ 2018: Oath, DoD Highlight Value in Bringing Bug Bounties to Life

Most hacker-powered security happens remotely, with digital messaging being the typical communication channel. There’s no brainstorming together with a whiteboard, no chats over coffee, no conversations during the walk across the street for lunch. One of the many benefits of Security@ is the chance to bring hackers, developers, and security teams together to meet in real life.


https://www.hackerone.com/application-se...nties-life

Integrate HackerOne directly into your website with Embedded Submissions

Receiving vulnerabilities has never been easier with the release of our newest integration: Embedded Submissions! The form will be embedded directly on your website by simply adding one line of JavaScript on your web page.


https://www.hackerone.com/vulnerability-...ubmissions

Shopify Awards $116,000 to Hackers in Canada: h1-514 Recap

Forty top hackers met in Montréal over the weekend to hack Canada-based Shopify. The commerce platform helps more than a half-million merchants spread across 90% of the world’s countries design, set-up, and manage their stores. During the live hacking event, dubbed h1-514, Shopify paid over $116,000 in bounties to hackers who helped surface 55 valid vulnerabilities to the program.


https://www.hackerone.com/ethical-hacker...-514-recap

Hacker101 CTF++: Find flags, get private bug bounty program invitations

Get rewarded with private invitations and work through the CTF as a group with our new release.


https://www.hackerone.com/application-se...nvitations