- Home /
- Bug Bounty Program
If you believe you have found a bug we encourage you to let us know right away. We will investigate all legitimate reports and do our best to quickly
fix the problem. We pounce on the problem immediately but carefully, figuring out exactly what caused it and how to fix it. Then we test the fix, make
sure it doesn't impact any existing functionality, deploy it, and announce the news.
In the hopes of avoiding public scenarios, we've created a "Bounty Reward" award. Here's how you get one:
- Find a vulnerability in our software (see what software is eligible below)
- Let us known
- DON'T FREAKING TELL ANYONE ELSE
Number 4 is very important. If the general public knows about your report, you can't get the award. As much as we hate to say it, it also means you
shouldn't collaborate with others. We know that sucks, but we don't really see any way around it: If you create a public community dedicated to finding
exploits, it will inevitably be watched closely by at least one jerk, and so anything discovered there will have to be considered "known to the general
public" and thus ineligible for the award.
JordanTBH Technologies will pay a bounty for certain product security bugs, as detailed below. All security bugs must follow the following general criteria to be eligible:
- The bug must be original and previously unreported
- The bug must be a major bug for example a security bug (remotely), small bugs like spelling mistakes will not be eligible.
- Employees of the JordanTBH Technologies Software Foundation and its subsidiaries are ineligible.
JordanTBH Technologies reserves the right to not give a bounty payment for any reason. The bounty reward will be a maximum of £3000 (GBP) cash
and an official t-shirt
We ask that you be available to provide further information on the bug as needed, and invite you to work together with JordanTBH Technologies engineers
in reproducing, diagnosing, and fixing the bug. As part of this process we will provide you full access to participate in our internal discussions about
Credit(s): Some of the text n this page is from Reddit. :)
† The bounty reward program will begin on th 04th December 2013