Close Menu
  • Home
  • Articles
    • Attacks
      • BEC
      • Data Breach
      • DDoS
      • Evasion Attacks
      • Injection
      • Malware
      • MITM
      • Phishing
      • Ransomware
      • RCE
      • Social Engineering
      • Spoofing
      • Spyware
    • Business and Policy
      • BCP and DRP
      • GRC
      • Regulations
    • Data Protection
      • DLP
      • DRM
      • Encryption
      • IAM
    • Future, Trends and Insight
      • AI
      • Events & Community
      • Emerging Tech
      • Expert Panel
      • Interviews With Experts
      • Insights
      • Study & Research
    • Resources
      • Guides
      • Tools
      • Training & Education
    • Security
      • API
      • Apps
      • Cloud
      • Critical Infrastructure
      • Endpoint
      • Hardware
      • IoT
      • Mobile
      • Network
      • OT
      • Port Security
      • Security Architecture
      • Software Development
      • Supply Chain
      • Zero Trust
    • Threats and Vulnerabilities
      • Emerging Threats
      • Insider Threats
      • Risk Management
      • Threat Intelligence
      • Zero Day
  • News and Exclusives
    • Latest News
    • ISB Exclusive
    • Positive News
  • Who We Are
    • About Us
    • Information Security Buzz Expert Panel​
    • Write for Us
    • Media Pack
  • Contact Us
  • Newsletter
Facebook X (Twitter) LinkedIn
Facebook X (Twitter) LinkedIn
Information Security BuzzInformation Security Buzz
  • Home
  • Articles
    • Attacks
      • BEC
      • Data Breach
      • DDoS
      • Evasion Attacks
      • Injection
      • Malware
      • MITM
      • Phishing
      • Ransomware
      • RCE
      • Social Engineering
      • Spoofing
      • Spyware
    • Business and Policy
      • BCP and DRP
      • GRC
      • Regulations
    • Data Protection
      • DLP
      • DRM
      • Encryption
      • IAM
    • Future, Trends and Insight
      • AI
      • Events & Community
      • Emerging Tech
      • Expert Panel
      • Interviews With Experts
      • Insights
      • Study & Research
    • Resources
      • Guides
      • Tools
      • Training & Education
    • Security
      • API
      • Apps
      • Cloud
      • Critical Infrastructure
      • Endpoint
      • Hardware
      • IoT
      • Mobile
      • Network
      • OT
      • Port Security
      • Security Architecture
      • Software Development
      • Supply Chain
      • Zero Trust
    • Threats and Vulnerabilities
      • Emerging Threats
      • Insider Threats
      • Risk Management
      • Threat Intelligence
      • Zero Day
  • News and Exclusives
    • Latest News
    • ISB Exclusive
    • Positive News
  • Who We Are
    • About Us
    • Information Security Buzz Expert Panel​
    • Write for Us
    • Media Pack
  • Contact Us
  • Newsletter
Subscribe
Information Security BuzzInformation Security Buzz
Home - News & Analysis - HackerOne brings hacker-powered pentesting to European organisations
News & Analysis

HackerOne brings hacker-powered pentesting to European organisations

ISBuzz TeamBy ISBuzz TeamJune 15, 2020Updated:June 26, 20204 Mins Read
Share LinkedIn Twitter Facebook Copy Link Email
The Vatican website for Pope Francis
Share
Facebook Twitter LinkedIn Email Copy Link
Quick AI Summary
ChatGPTClaudeGeminiGrokPerplexityDeepSeekCopilot

HackerOne Pentest enables organisations to accelerate digital transformation while meeting compliance requirements

LONDON, 15 JUNE 2020 — HackerOne, the number one hacker-powered security platform, today announced the expansion of its penetration testing solution in Europe. This latest product from HackerOne compliments its existing offerings dedicated to helping organisations find and fix vulnerabilities before they can be exploited. HackerOne Pentest enables customers to meet compliance standards and requirements easier and faster with hacker-powered security.

In a recent report, McKinsey Insights predicts the COVID-19 pandemic will accelerate businesses’ digital transformation, putting pressure on organisations to deliver digital products and services faster while expecting security to keep pace. HackerOne Pentest leverages the creativity and expertise of the world’s largest ethical hacking community to find and report vulnerabilities in real-time to secure businesses and organisations throughout their digital transformation without slowing software development.

“Penetration testing in its traditional form is broken,” says Guillaume Vives, Chief Product Officer at HackerOne. “The lengthy process of waiting for an enormous document to know what vulnerabilities were found — relevant or not — doesn’t fit with the speed of modern development lifecycles. In today’s agile environments, pentest platforms should seamlessly integrate with every aspect of the software development lifecycle so that findings are quickly pushed to the right developer and vulnerabilities are fixed faster. With an all in one platform, customers can view progress across kick-off, testing, retesting, and remediation phases. We’re excited to breathe new life into pentests by disclosing findings in real-time with a team of experientially diverse hackers, securing code at the speed of development. This will enable customers to see where the holes are and make faster fixes.”

Top features of HackerOne pentest include:

  • Access to HackerOne’s global and diverse pentester community, recruited from a pool of over three-quarters of a million ethical hackers, giving customers unmatched flexibility across testing needs.
  • Ability to complete the pentests required for both regulatory compliance and customer assessments. HackerOne Pentests deliver compliance-ready reports to satisfy standards such as SOC2, HITRUST, and ISO 27001 and others. The findings are summarised in an actionable, methodology-based report to help security and engineering teams better understand how to reduce risk.
  • Readiness to launch in as little as seven days and see results in just four weeks. When vulnerabilities are discovered, customers are immediately alerted instead of waiting until the final report.
  • Integrations including Jira, Github, GitLab, Slack, Zendesk, and more, allowing customers to plug into processes and applications already in use to eliminate delays and ensure DevOps can remediate findings faster. Incoming reports are complete and comprehensive to enable reproducible results, and any retesting is included. Hackers use industry-standard CVSS vulnerability ratings for consistency.
  • Full visibility to help remove testing roadblocks, get instant feedback and updates, and monitor the overall process. This direct feedback loop with testers encourages more effective testing and returns more reliable, higher quality results.
  • Compliments existing HackerOne Response, Bounty, and Challenge programs to provide the ongoing testing and compliance requirements that make up a comprehensive and offensive security strategy.

“When customers trust you to store and manage their data in the cloud and regulatory agencies are watching, you need a creative security solution that gets beyond the checklist,” said George Gerchow, Chief Security Officer at Sumo Logic. “No attack surface is the same. Yet most traditional pentests we experience have been a one-size-fits-all black box engagement with little to no interaction with testers or a way to interpret the value of what we’re getting beyond a report.”

Commenting on the move by HackerOne, pentester and hacker @randomdeduction says “At traditional firms, moving from one time-boxed engagement to another can cause burn out quickly. While hacking, we spend our time doing intense technical reviews of the systems powering some of the world’s largest companies. This depth of knowledge drives precision and detailed coverage on each pentest engagement that is very hard to find elsewhere.”

HackerOne Pentest is now available to businesses in Europe. For more information on how penetration testing can fit into a comprehensive security strategy, register for our webinar here or visit our website: https://www.hackerone.com/product/pentest

ISBuzz Team
  • ISBuzz Team
    Air Canada Data Breach: BianLian Extortion Group Claims A Massive Heist Contrary To Airline’s Earlier Statement
  • ISBuzz Team
    Unprecedented DDoS Attack Rocks The Web: Tech Giants Reveal A Digital Tsunami
  • ISBuzz Team
    CISA Flags High-Severity Adobe Acrobat Reader Flaw Amid Active Exploits
  • ISBuzz Team
    Curl Security Alert: Patching A Critical Bug Averting Potential Cyber Catastrophe

The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.

Share. Facebook Twitter LinkedIn Email Copy Link

Related Posts

The Real Cost of Inconsistent Third-Party Access

December 18, 20255 Mins Read

What Happens When Devices Cross Borders? The Role of Geofencing in Global IT

August 7, 20256 Mins Read

The Evolving Importance of Identity Governance in FinTech

July 10, 20258 Mins Read
ISB-Bora-Side-Bar

No se ha podido establecer conexión. Error 429

 
ISB-Bora-Side-Bar
Black ISB Logo

Information Security Buzz is an independent resource that provides the experts’ comments, analysis, and opinion on the latest Cybersecurity news and topics

X (Twitter) LinkedIn Facebook RSS

Working With Us

  • About Us
  • Advertise With Us
  • Contact Us

Write For Us

  • How To Contribute

The Pages

  • Privacy Policy
  • Cookie Policy
  • AI Policy
  • Terms & Conditions
  • Copyright Notice

Information Security Buzz and all its contents are copyright © 2014-2025. All rights reserved. All third-party trademarks are recognized.

Type above and press Enter to search. Press Esc to cancel.

Manage Consent
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
  • Manage options
  • Manage services
  • Manage {vendor_count} vendors
  • Read more about these purposes
View preferences
  • {title}
  • {title}
  • {title}