HackerOne
2024-04-22 12:42:18
www.hackerone.com
“Capital One puts the security of our customers and our systems at the forefront of everything we do. Live Hacking Events are a key component of our robust security testing strategy and are a unique and dynamic way to engage with the ethical hacking community, allowing us to form close partnerships with each of the hackers. Across industry, these types of events are considered a gold standard to ensure companies are approaching risk from every potential angle, and we’re grateful for the hackers’ hard work and partnership to help us further bolster our defenses.”
— Kathryn Torelli, Bug Bounty Lead, Capital One
H1-305: By the Numbers
The participants:
- 52 participating researchers
- 22 countries represented
- 144 Collaborations
The results:
- Over 1,300 hours of reported testing conducted
- 105 valid reports
- 49 unique reporters
- $750,000+ total awards
The Hackers
Capital One considers LHEs essential to maintaining an industry-leading program. Live hacking events allow the best and brightest security researchers to collaborate in person. Every security researcher who joined Capital One at H1-305 added value to the program.
One hacker, @archangel, took a different approach at H1-305. Typically, @archangel is heavily involved in collaboration during live hacking events, but he decided to take this one solo. His hard work and effort paid off, earning him not only first place but also the title of the event’s Most Valuable Hacker.
Congratulations to @archangel and the other winners of H1-305!
- First place: @archangel
- Second place: @rhynorater
- Third place: @avishai
- Exterminator (most critical/impactful vulnerability of the event): @stealthy
- Eliminator (best bug on a specific skill set): @fr4via
- Eradicator (best bug of the final event day): @CDL, @m0chan, @nagli
- Most Valuable Hacker (Community, Criticality, Consistency): @archangel
“One of the noteworthy lessons learned for all security teams from this live hacking event was the inclusion of software and engineering teams from Capital One. It was exciting and powerful to observe the benefits of the live collaboration between Capital One engineering teams and the hacker community. The ability for engineers and hackers to ask live questions of each other created unique opportunities for learning and working together.”
— Alex Rice, CTO, HackerOne
Activities
Alongside hours of exciting hacking, hackers and the Capital One team enjoyed the beautiful Miami weather, food, and arts scene. At the Wynwood Walls museum, featuring hundreds of artists from over 20 countries, hackers were able to test their own artistic abilities by spray painting during the interactive portion of the museum. With delicious food trucks and great weather, it was a fun opportunity for everyone to explore Miami!
Thank you to all the H1-305 participants for making this live hacking event an amazing success, and to Capital One for our continued partnership for a safe and secure internet. Learn more information about live hacking events with HackerOne.
Support Techcratic
If you find value in our blend of original insights (Techcratic articles and Techs Got To Eat), up-to-date daily curated articles, and the extensive technical work required to keep everything running smoothly, consider supporting Techcratic with Bitcoin. Your support helps me, as a solo operator, continue delivering high-quality content while managing all the technical aspects, from server maintenance to future updates and improvements. I am committed to continually enhancing the site and staying at the forefront of trends to provide the best possible experience. Your generosity and commitment are deeply appreciated. Thank you!
Bitcoin Address:
bc1qlszw7elx2qahjwvaryh0tkgg8y68enw30gpvge
Please verify this address before sending any funds to ensure your donation is directed correctly.
Bitcoin QR Code
Your contribution is vital in supporting my efforts to deliver valuable content and manage the technical aspects of the site. To donate, simply scan the QR code below. Your generosity allows me to keep providing insightful articles and maintaining the server infrastructure that supports them.
Privacy and Security Disclaimer
- No Personal Information Collected: We do not collect any personal information or transaction details when you make a donation via Bitcoin. The Bitcoin address provided is used solely for receiving donations.
- Data Privacy: We do not store or process any personal data related to your Bitcoin transactions. All transactions are processed directly through the Bitcoin network, ensuring your privacy.
- Security Measures: We utilize industry-standard security practices to protect our Bitcoin address and ensure that your donations are received securely. However, we encourage you to exercise caution and verify the address before sending funds.
- Contact Us: If you have any concerns or questions about our donation process, please contact us via the Techcratic Contact form. We are here to assist you.
Disclaimer: As an Amazon Associate, Techcratic may earn from qualifying purchases.