Crypto.com Launches $2 Million Bug Bounty Program with HackerOne

by do son · December 4, 2024

Crypto.com, a leading cryptocurrency platform with over 100 million users worldwide, has announced a significant upgrade to its bug bounty program in partnership with HackerOne. This move reinforces the company’s commitment to security and customer protection in the ever-evolving digital asset landscape.

The upgraded program boasts a record-breaking $2 million reward pool, making it the largest bounty offered on the HackerOne platform across all industries. This unprecedented sum underscores Crypto.com’s dedication to identifying and addressing potential vulnerabilities before they can be exploited by malicious actors.

“Security and compliance are at the foundation of everything we do at Crypto.com,” says Kris Marszalek, CEO of Crypto.com. “As our business and the industry continue to grow, it’s critically important that we remain focused on our core principles, and this new bounty program does that by setting a new bar.”

By incentivizing security researchers to identify and report vulnerabilities, Crypto.com aims to proactively strengthen its platform’s defenses and ensure the safety of its users’ assets.

“When you operate a global app serving more than 100 million customers, finding critical security gaps before bad actors do is essential to system integrity and customer trust,” states Kara Sprague, CEO of HackerOne.

Crypto.com’s Chief Information Security Officer, Jason Lau, emphasizes the company’s commitment to continuous improvement in security assurance. “We have always respected and partnered with the ethical hacking community as an extension of our security team,” says Lau. “Deepening our relationship with HackerOne through this milestone and setting this landmark bounty underscores our commitment to enhancing safeguards and consumer protection.”

This latest move builds upon Crypto.com’s already impressive track record in security and compliance. The platform has achieved numerous certifications, including SOC2 Type 2, PCI DSS 4.0, ISO 27017, and ISO 27019, demonstrating its adherence to the highest industry standards.

The $2 million bug bounty program is a clear signal of Crypto.com’s proactive approach to security and its dedication to providing a safe and trustworthy platform for its users. By engaging with the ethical hacking community, the company is taking a significant step towards fostering a more secure cryptocurrency ecosystem.

To learn more about Crypto.com’s bug bounty program and how to participate, visit hackerone.com/crypto.