$100K Bounty To Hack ExpressVPN – YouAttest Comments

By   ISBuzz Team
Writer , Information Security Buzz | Feb 10, 2022 04:57 am PST

Express VPN is challenging researchers to crack into their TrustedServer challenging researchers to crack into their TrustedServer system with a $100K bug bounty.

$100K Ground Rules:

  • The first person to submit a valid vulnerability will receive an additional US$100,000 bonus bounty. This bonus will be valid until the prize has been claimed.
  • Avoid violating the privacy of others, disrupting our systems, destroying data, and/or harming user experience.
  • Use only official channels to discuss vulnerability information with us.
  • Keep the details of any discovered vulnerabilities confidential until they are fixed, according to the disclosure policy.
  • Perform testing only on in-scope systems, and respect systems and activities which are out of scope.
Notify of
1 Expert Comment
Oldest Most Voted
Inline Feedbacks
View all comments
Garret F. Grajek
February 10, 2022 12:57 pm

Impressive pro-active \”bug bounty\” policy by ExprssVPN to insure security of their product. Given the pervasive attacks on both enterprise systems and the tools that are purported to protect the enterprise. The Solarwinds hack has put legitimate doubt in the security community on all of the tools security professionals use to keep their enterprises secure. ExpressVPN acknowledges this fear and uncertainty that security professionals now have in adding tools to their environments and their action might become a \”best practice\” for security tools.

Last edited 2 years ago by Garret F. Grajek

Recent Posts

Would love your thoughts, please comment.x