With 100 million users across 90 countries worldwide, Singapore-based Crypto.com is one of the world’s biggest crypto trading platforms. As you might imagine, then, trust is a central pillar supporting everything the organization does, and the foundations of that trust are built around security and privacy. This security-first philosophy is highlighted in the promise that security and privacy are built into the business by design and default. “We drive a zero trust, defense in depth security strategy across our systems and platforms,” Crypto.com states, “to continually strengthen our security posture, we invest heavily in ongoing security and privacy awareness training for all staff.” And now it’s investing heavily in hackers, to the record-breaking tune of $2 million. Here’s what you need to know.
Crypto.com is not new to the world of bug bounty platforms; it has had a presence on the HackerOne platform since May 2018, after all. In that time, it has paid out a total of $539,130 in bounties to hackers, with the top bounty range, according to HackerOne’s own statistics, being in the $3,759 – $40,000 bracket. That could all be set to change, and how.
That existing bug bounty program is being updated so as to increase the maximum amount payable to hackers who are successful in finding certain types of security vulnerabilities is now a truly whopping $2 million. In case you need some perspective for just how important a milestone this is, it represents the biggest bug bounty ever offered by HackerOne since it was founded in 2012.
Source: Forbes