Closing the Exposure Gap: What pixiv Learned About Continuous Security Testing 2026-06-10 True True Continuous Threat Exposure Management and the Remediation Crisis 2026-06-10 True True AI Vulnerability Discovery Is Outpacing Remediation 2026-06-10 True True Vulnerability Exploitability: GPT-5.5 vs Claude Benchmarks 2026-05-10 True True Continuous Security Validation in Practice: XSS Workflow Case Study 2026-04-14 True True How to Find XSS Vulnerabilities: Practical Security Guide 2026-04-07 True True Roni Carta: From Bug Bounties to Building a Safer Supply Chain 2026-01-29 True True The Top Researcher Signals From HackerOne’s 2025 HPSR 2026-01-06 True True CVE-2025-55182: Critical React Exploit Hits Millions of Sites 2025-12-06 True True Shai-Hulud 2.0: Responding to the npm Worm Threatening CI/CD Security 2025-11-26 True True HackerOne Incident Update: Salesforce 2025-11-10 True True AI Security Findings Outpace Cybersecurity Remediation in 2025 2025-10-27 True True AI Security Risks and Vulnerabilities Enterprises Must Address 2025-09-30 True True GCP Security Configuration Review and Best Practices 2025-08-12 True True Pentesting your external network with HackerOne 2025-08-06 True True Pentesting for APIs and Best Practices 2025-08-04 True True Pentesting for Web Applications 2025-07-31 True True AWS Security Configuration Review and Best Practices 2025-07-30 True True CVE-2025-53770: What Security Teams Need to Know About the SharePoint RCE Vulnerability 2025-07-23 True True Pentesting for iOS Mobile Applications 2025-07-08 True True How a GraphQL Bug Resulted in Authentication Bypass 2025-07-08 True True A Guide To Subdomain Takeovers 2.0 2025-07-08 True True Pentesting for AI and Large Language Models 2025-07-08 True True Securing Our Elections Through Vulnerability Testing and Disclosure 2025-06-27 True True Testing Hai Insight Agent in Our Bug Bounty Program 2025-06-24 True True 10 Steps to Avoid Social Engineering Attacks 2025-05-21 True True Smart Contracts: Common Vulnerabilities and Real-World Cases 2025-05-13 True True Pentesting for Android Mobile Applications 2025-05-07 True True Lessons from Crypto Exploits 2025-03-10 True True Join HackerOne’s Ambassador World Cup 2025-02-19 True True The OWASP Top 10 for LLMs 2025: How GenAI Risks Are Evolving 2024-12-18 True True Azure Cloud Configuration Review 2024-12-13 True True How a Privilege Escalation Led to Unrestricted Admin Account Creation in Shopify 2024-12-12 True True How HackerOne Disproved an MFA Bypass With a Spot Check 2024-11-27 True True How an Improper Access Control Vulnerability Led to Account Theft in One Click 2024-11-27 True True How an Information Disclosure Vulnerability Led to Critical Data Exposure 2024-11-27 True True How a Cross-Site Scripting Vulnerability Led to Account Takeover 2024-11-27 True True How a Business Logic Vulnerability Led to Unlimited Discount Redemption 2024-11-27 True True Vulnerability Deep Dive: Gaining RCE Through ImageMagick With Frans Rosen 2024-11-27 True True Pentesting for Internal Networks 2024-11-27 True True How an IDOR Vulnerability Led to User Profile Modification 2024-11-27 True True Common Ecommerce Vulnerabilities: Reflected XSS 2024-11-27 True True How Ethical Hackers Are Securing Elections 2024-11-27 True True How Serialized Cookies Led to RCE on a WordPress Website 2024-11-26 True True How a Prompt Injection Vulnerability Led to Data Exfiltration 2024-11-26 True True How a Race Condition Vulnerability Could Cast Multiple Votes 2024-11-26 True True XZ Utils CVE-2024-3094: A Tale of Broken Trust, Curious Persistence, and a Call to Action 2024-11-26 True True AI Safety vs. AI Security 2024-11-26 True True Meet HackerOne’s Brand Ambassadors That Break the Hacker Stereotype 2024-11-26 True True (Best) Practice Makes Perfect 2024-11-26 True True 
