HackerOne Blog

The latest from HackerOne

7 Predictions Defining the Move to Always-On Cybersecurity in 2026

December 9th, 2025

Security leaders forecast 2026 as the year CTEM becomes essential, with AI-driven threats, agentic security, and continuous validation reshaping cyber risk.

Read Now

All

Cloud Security

Code Security

Crowdsourced Security

Culture & Talent

Defense in Depth

From the CEO

HackerOne News

Offensive Security

Public Policy

Return on Mitigation

Security Compliance

Security Research

Exposure Management

Public Policy

What You Should Know About The Next Wave of EU AI Act Requirements

July 31st, 2025

Starting August 2, 2025, key EU AI Act requirements take effect, impacting high-risk AI systems and GPAI models. Learn how to align security with compliance.

Crowdsourced Security

Live Hacking Events

Adobe Security Recap: 2024 Ambassador World Cup Final Four

July 31st, 2025

Last month, Adobe participated in the final round of the 2024 Ambassador World Cup (AWC) championship.

Exposure Management

Hai

Beyond the Noise: How HackerOne Cuts Through the Noise in the Age of AI

July 30th, 2025

More AI means more reports, and more noise. See how HackerOne’s Hai Triage and Insight Agent keep quality high and push faster fixes with human‑in‑the‑loop AI.

Offensive Security

API Pentesting and Best Practices

July 29th, 2025

HackerOne's community-driven Pentest as a Service (PTaaS) uncovers vulnerabilities specific to APIs, leveraging expert methodologies and tailored testing approaches.

Culture & Talent

Recharge Week at HackerOne

July 28th, 2025

HackerOne's Recharge Week fosters rest and connection, allowing employees to reset and rejuvenate.

Public Policy

Why Reauthorizing CISA 2015 Is Critical to the AI Action Plan

July 24th, 2025

CISA 2015 is the backbone of public-private cybersecurity collaboration. As Congress faces reauthorization, here's why letting it lapse would put defenders, and national security, at risk.

Exposure Management

Hai

Scale Security Knowledge with Shared Hai Plays

July 24th, 2025

Hai Plays helps security teams move faster, cut repetitive work, and drive consistent results by turning team knowledge into actions across the organization.

Code Security

What is CVE-2025-53770? A Critical Microsoft SharePoint Vulnerability and How to Respond

July 23rd, 2025

CVE-2025-53770 is a critical Microsoft SharePoint vulnerability now under active exploitation. Learn how to respond, assess exposure, and improve visibility with proactive security strategies.

Hai

How We Escalate Critical Reports Faster Using Hai + Automations

July 21st, 2025

We built a Hai-powered automation to flag critical bug bounty reports faster. Learn how it works and how your team can replicate it to speed up response and reduce risk.