Get in touch

Contacted by a hacker?

Speak with one of our security experts.

Every five minutes, a hacker reports a vulnerability. If a hacker contacts your organization, HackerOne can help you plot your next steps—from communication to remediation. And if you're a hacker seeking to report a vulnerability you've discovered, HackerOne can help you notify the appropriate parties.

If you're being extorted, blackmailed, or threatened by a bad actor, contact law enforcement.

Frequently Asked Questions

FAQs

During a Distributed Denial of Service (DDOS) attack, bad actors flood your network with malicious traffic. If you’re experiencing a DDOS attack, notify your security provider, who might be your internet service provider (ISP), web hosting provider, or security service.

Disconnect from the internet immediately and contact your IT department or Internet Service Provider (ISP)

Change your password and report the phishing attempt to the National Fraud Information Center, Internet Crime Complaint Center, U.S. Department of Justice, or the Better Business Bureau.

First, search the HackerOne Directory for the appropriate program to report your finding.

If a program does not exist, submit the vulnerability through our Disclosure Assistance process.

Contacted by a hacker?

FAQs

What should I do if I'm experiencing a DDOS attack?

What should I do if I'm experiencing a malware attack?

What should I do if I've discovered a phishing attempt?

I'm a hacker. How do I submit a vulnerability I've discovered?