#hackerone

[ follow ]
#data-breach #cybersecurity #ai #navia-benefit-solutions #open-source #security #bug-bounty #navia #personal-data
Software development
fromInfoWorld
12 hours ago

Internet Bug Bounty program hits pause on payouts

The Internet Bug Bounty program is pausing submissions for bug reports in open-source software to reassess its approach to security.
#data-breach
Privacy professionals
fromSecurityWeek
1 week ago

HackerOne Employee Data Exposed in Massive Navia Breach

Nearly 300 HackerOne employees had personal information exposed in a data breach by Navia Benefit Solutions affecting 2.7 million individuals.
Privacy professionals
fromTheregister
1 week ago

HackerOne slams supplier over delayed breach notice

HackerOne employees were affected by a data breach linked to a third-party benefits provider, Navia Benefit Solutions, due to a security flaw.
more#data-breach
fromThe NodeSource Blog - Node.js Tutorials, Guides, and Updates
1 month ago

Understanding Node.js' New Signal Requirement for Security Reports

This decision addresses a critical operational need. While Node.js values open collaboration, the volume of low-quality security reports has increased drastically, driven largely by automated tools and generative AI. The problem: Between December and January, the project received over 30 vulnerability reports, compared to the usual average of 6 or 7 per month. Many of these submissions lacked technical merit or turned out to be false positives.
Node JS
Information security
fromChannelPro
3 months ago

HackerOne eyes enterprise growth with double C-suite appointment

HackerOne appointed Stephanie Furfaro as CRO and Stacy Leidwinger as CMO to accelerate growth in threat exposure management and AI-native security offerings.
Artificial intelligence
fromArs Technica
10 months ago

Open source project curl is sick of users submitting "AI slop" vulnerabilities

AI-generated vulnerability reports are misleading and can be easily identified.
There's a need for better tools and infrastructure to counter the misuse of AI in security reporting.
[ Load more ]