Despite a proliferation of automated technologies in the cybersecurity space, humans are still more effective at rooting out security vulnerabilities, according to infosecurity professionals.

Research conducted by hacker-powered security platform HackerOne found that 53% of security professionals surveyed at Infosecurity Europe considered humans to be most effective.

However, there are some that would prefer to put their trust in bots, with 27% seeing automated tools as the most effective solution – a statistic that was met with surprise by HackerOne.

“I’m actually surprised that there are still a large number of people who would put their trust solely into automated scanners,” said Laurie Mercer, a security engineer at HackerOne.

“The singularity is not here. Automation is no match for human intelligence.”

Security vulnerabilities remain a key cause of breaches

Despite human error remaining responsible for the vast majority of breaches, security vulnerabilities still account for a significant minority of incidents.

How well do you really know your competitors?

Access the most comprehensive Company Profiles on the market, powered by GlobalData. Save hours of research. Gain competitive edge.

Company Profile – free sample

Thank you!

Your download email will arrive shortly

Not ready to buy yet? Download a free sample

We are confident about the unique quality of our Company Profiles. However, we want you to make the most beneficial decision for your business, so we offer a free sample that you can download by submitting the below form

By GlobalData
Visit our Privacy Policy for more information about our services, how we may use, process and share your personal data, including information of your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.

HackerOne’s survey found that 12% of organisations had been hit by a breach as a result of security vulnerabilities.

79% also saw such vulnerabilities as a key threat to their organisation – with 64% saying they would be willing to work with ethical hackers to find such issues.

91% also felt hackers should be rewarded for finding vulnerabilities – a common approach through bug bounty programmes – although 63% felt such rewards should only be made available when the hacker followed correct disclosure processes.

“We are all vulnerable, and we all suffer the consequences. Let’s help each other out,” said Mercer.

“There is a huge community of trustworthy people who are naturally talented at finding unpatched and unknown security vulnerabilities. The best way to prevent getting hacked is to try to get hacked by people you trust. Together, we can build a safer internet.”


Read more: Victimology: In the shoes of a cybersecurity analyst