HackerOne

🎉 At the core of HackerOne lies a set of values that serve as our compass. These values shape our culture and represent the collective ethos of the organization. Understanding our values empowers employees to become agents of change within their organization. We honored Aidan Matzko as the 2025 Default to Disclosure winner this year. 🏆 Aidan has been at the heart and center of scaling our triage services while supporting our customers and employees. Congratulations, Aidan! 🙌 🙌 #HackerOneLife #recognition

🌌 Ever wondered what it’s like to party in the future? Here’s your chance! Join HackerOne at #RSAC 2025 to Surf the Galaxy into #cyberstrength. 💪 Don’t get left in the past—RSVP now! https://bit.ly/4liQUfR

We're excited to announce HackerOne's integration with GitLab, which will enable a bi-directional sync between HackerOne's security reports and GitLab's issue-tracking system. 🙌 ✅ Remediation actions taken in GitLab are reflected in HackerOne ✅ Real-time updates between both platforms for seamless tracking ✅ Reduce manual work & errors, accelerating response times Strengthening your security posture just got way more efficient! Read more: https://bit.ly/4lgVT0q

🌍✨ April is our month of giving back! HackerOne employees are dedicating time this month to volunteer in local communities. We believe supporting our employees in this effort is essential! Volunteering strengthens teamwork, boosts morale, and makes a positive impact. Stay tuned for updates on our volunteer activities this month! 💪❤️ #HackerOneLife #volunteering

The only way to build a safer internet is through meaningful collaboration! 🤝 Strong partnerships between bug bounty program owners and security researchers keep researchers engaged and ensure organizations receive a steady stream of vital findings that help strengthen and protect their digital landscape. In our latest post, Security Researcher Evan Connelly highlights strategies for both researchers and programs that can help foster these valuable relationships. https://bit.ly/4jaUTtr

Huge news for U.K. security and resilience! 🚀🔐 The UK Ministry of Defence (MoD) recently updated its #SecurebyDesign framework to include Bug Bounties. This is a significant step forward in recognizing the value of security researchers and crowdsourced security in strengthening proactive national defense. We’re proud to work with governments that embrace collaborative security models—because the best defense is well-tested. https://bit.ly/3ODdpNL

Last chance to register for tomorrow's webinar on AI risk! Come join Leonard Tang from Haize Labs and myself for a lively discussion on: - what AI risk means across reliability, safety, and security - who owns these problem sets and risk areas - how human ingenuity and scaled synthetic data work in concert to safeguard AI systems https://lnkd.in/gg5NVcMe

Just wrapped up a fantastic meeting with our long-term Customer, Grab. Collaboration like this is what drives real progress, and we’re looking forward to what’s next. Thanks again to Prithvinder Singh and the team for hosting us and for the partnership! For Security Researchers out there - check out the Grab bug bounty program on HackerOne! https://lnkd.in/epgKVpYP Kelvin Teh Fifi Handayani Martijn Russchen John Ding Wei Lim Sam Yen

🚨The CISO role has never been more challenging—or more critical. With an ever-growing attack surface, AI-assisted threats, and increasing regulatory pressures, CISOs have more personal accountability than ever and a huge and growing technology, tool, and talent gap. Many CISOs feel they are always on their back foot, caught in a reactive loop. It's time to turn the tide by embracing a concept we're calling "cyberstrength": a proactive and adaptive approach to security that supports innovation while minimizing risk. Cyberstrength involves a few core practices: ✅ Implement a robust offensive security strategy that includes crowdsourcing and combines powerful AI with human ingenuity to stay ahead of threats. ✅ Secure every stage of your technology lifecycle, from development through deployment, in a layered approach that creates a comprehensive, evolving defense. ✅ Apply offensive security approaches to AI systems (both models and applications built around 3rd-party models) to ensure they are secure, trustworthy, and safe. ✅ Quantify your impact through metrics like Return on Mitigation (RoM), which help measure and demonstrate the value of proactive security investments. These practices have helped many CISO turn their cybersecurity liability into a strategic advantage. I'm curious: how are you building cyberstrength in your organization? 🔗 Read more about our approach to cyberstrength in my latest blog: https://lnkd.in/eC7HPWfq #Cyberstrong #Security2Strength

At HackerOne, we believe in cyberstrength 💪 —a proactive and adaptive approach that blends AI efficiency with human intelligence. How do you build cyberstrength? ✅ Embrace offensive security to stay ahead of emerging threats. ✅ Secure every stage—from development to deployment—to strengthen security maturity. ✅ Quantify your impact with metrics like Return on Mitigation (RoM) to measure and prove the value of proactive security. Security isn’t just a technical challenge for our customers—it’s a strategic advantage. 🔗 Read more about building cyberstrength in HackerOne CEO Kara Sprague Spaugue’s latest blog: https://bit.ly/4iMmIaV #Cyberstrong #Security2Strength