This website use cookies which are necessary to its functioning and required to achieve the purposes illustrated in the privacy policy. To learn more or withdraw consent please click on Learn More. By continued use of this website you are consenting to our use of cookies.
Accept
Learn More

Posts by Topic

Bug Bounty Management Bugcrowd News Bugcrowd Spotlight Bug Hunter Methodology Community Spotlight Company Resources Conferences & Events Customer Case Study Cybersecurity News Guest Blogs Product Spotlight Product Updates Program Launches Program Management Program Updates Report Recap Researcher Event Researcher Resources Researcher Spotlight Success Stories Thought Leadership Vulnerabilities Vulnerability Disclosure Webinar Recap Winner's Circle

Posts By Author

Abigail Nguy Andy Burtis Ashish Gupta Athena Peterson Barnett Klane Breonna Burrell Bugcrowd Bugcrowd Design Bugcrowd Product Marketing Bugcrowd Researcher Success Casey Ellis David Baker Erica Azad Grant McCracken Guest Post Jason Haddix Kaila Pollart Kaushik Srinivas Lauren Craigie Luke Stephens Mari Kemp Michael Hamel Michael Skelton Omar Carmical Randy Young Rick Beattie Ryan Black Shpend Kurtishaj

Program Spotlight: Bitdefender

Program Spotlight: Bitdefender

About Bitdefender:

Bitdefender is a global leader in cybersecurity, protecting over 500 million systems for more than 18 years in more than 150 countries. Powered by its depth of security expertise and rapid pace of research and development, Bitdefender’s long-standing mission is to deliver transformative security technologies to the world’s users and organizations.  

About the Program: 

Bitdefender’s public bug bounty program is focused on identifying vulnerabilities and any assets (infrastructure or products) bearing the Bitdefender brand. Currently the program wants to put a particular spotlight on a new billing and subscription platform and as such, is running a promotion offering substantially increased rewards for any P1 and P2 vulnerabilities found there. 

What’s In It For You: 

They are currently running a reward event where they have increased their P1 and P2 rewards by 50% for any findings in the new billing and subscription service. The specific targets that are a part of this reward event include: 

The reward ranges for bugs found on these targets are: 

Technical SeverityLow RewardHigh Reward
P1$4,650$7,500
P2$2,000$4,500
P3$200$500
P4$100$200

Scope: 

Assets in scope of the main Bitdefender program include: 

  • *.bitdefender.com
  • *.bitdefender.net
  • Bitdefender Total Security 2020
  • Bitdefender GravityZone Business Security
  • Bitdefender Antimalware Engines

Skills: 

This is an attractive program for anyone with skills as a web focused pentester.

What Can You Expect From This Program:

When working with the Bitdefender team, you can expect them to: 

  • Extend Safe Harbor for your vulnerability research 
  • Work with you to understand and validate your report, including a timely initial response to the submission
  • Work to remediate discovered vulnerabilities in a timely manner
  • Recognize your contribution to improving their security 

Interested in learning more? 

Portswigger’s Web Security Academy: https://portswigger.net/web-security

Cyber Mentor’s video course on Web Application Hacking: https://www.youtube.com/watch?v=24fHLWXGS-M

OWASP’s Mobile Security Guide:  https://owasp.org/www-project-mobile-security-testing-guide/

 

Tags:
Topics:

Athena Peterson

Senior Customer Experience Marketing Manager at Bugcrowd

Recent Posts
Back To Top