Express VPN is challenging researchers to crack into their TrustedServer challenging researchers to crack into their TrustedServer system with a $100K bug bounty.
$100K Ground Rules:
- The first person to submit a valid vulnerability will receive an additional US$100,000 bonus bounty. This bonus will be valid until the prize has been claimed.
- Avoid violating the privacy of others, disrupting our systems, destroying data, and/or harming user experience.
- Use only official channels to discuss vulnerability information with us.
- Keep the details of any discovered vulnerabilities confidential until they are fixed, according to the disclosure policy.
- Perform testing only on in-scope systems, and respect systems and activities which are out of scope.
Impressive pro-active \”bug bounty\” policy by ExprssVPN to insure security of their product. Given the pervasive attacks on both enterprise systems and the tools that are purported to protect the enterprise. The Solarwinds hack has put legitimate doubt in the security community on all of the tools security professionals use to keep their enterprises secure. ExpressVPN acknowledges this fear and uncertainty that security professionals now have in adding tools to their environments and their action might become a \”best practice\” for security tools.