🐂 Not all bull runs are created equal. November’s AI picks include 5 stocks up +20% eachUnlock Stocks

KuCoin Strengthens Security with Bugcrowd Partnership to Launch Bug Bounty Program

Published 07/05/2024, 12:01
Updated 07/05/2024, 12:15
© Reuters.  KuCoin Strengthens Security with Bugcrowd Partnership to Launch Bug Bounty Program
BTC/USD
-
CS
-

Coin Edition -

  • KuCoin partners with Bugcrowd to launch a bug bounty program to enhance security across its trading platform.
  • The program targets critical vulnerabilities in web and mobile modules, with rewards of up to $10,000 for extreme issues.
  • High-severity findings receive rewards up to $2,000, while medium-severity discoveries are rewarded up to $400.

The prominent global crypto exchange KuCoin has partnered with Bugcrowd, the leading crowdsourced cybersecurity platform, to enhance platform security. KuCoin announced this new security-focused collaboration in a recent press statement seen by Coin Edition.

The collaboration marks the launch of an extensive bug bounty program designed to identify and rectify potential vulnerabilities across KuCoin’s platform. The program focuses on pinpointing critical vulnerabilities in web and mobile modules.

Regarding the web modules, issues such as business logic flaws, payment manipulation risks, remote code execution, and sensitive information leakage are among the targeted vulnerabilities. Additionally, the program addresses a spectrum of OWASP issues, such as Cross-Site Scripting (XSS), SQL Injection, and others.

However, on the mobile front, the focus shifts to vulnerability functions capable of accessing unsafe external links. It includes potential exploitations of the “Jsbridge/Javascript interface” that could harm users and other mobile-related susceptibilities that could result in potential losses.

KuCoin and Bugcrowd have established a tiered reward system based on the severity of identified vulnerabilities to incentivize security researchers and reward their efforts. The rewards range from $10,000 for extreme severity to $50 for low severity issues.

Specifically, detected extreme severity issues are rewarded with $10,000, and critical severity vulnerabilities range from $3,000 to $5,000. Moreover, high-severity findings receive rewards ranging from $1,000 to $2,000, while medium-severity discoveries are rewarded between $200 and $400. Low-severity issues merit rewards varying from $50 to $100.

Johnny Lyu, CEO of KuCoin, emphasized the exchange’s commitment to prioritizing the security of user assets and transactions. Lyu remarked:

As People’s Exchange, the security of users’ assets is always our top priority. Ensuring the safety of user assets and transactions is an ongoing endeavor to which we are committed.

Bugcrowd CEO Dave Gerry echoed Lyu’s sentiments, highlighting the importance of trust and security in the cryptocurrency market. “We’re excited to partner with KuCoin to launch their Bug Bounty Program to achieve a safer trading environment for all users,” Gerry remarked.

The post KuCoin Strengthens Security with Bugcrowd Partnership to Launch Bug Bounty Program appeared first on Coin Edition.

Read more on Coin Edition

Latest comments

Risk Disclosure: Trading in financial instruments and/or cryptocurrencies involves high risks including the risk of losing some, or all, of your investment amount, and may not be suitable for all investors. Prices of cryptocurrencies are extremely volatile and may be affected by external factors such as financial, regulatory or political events. Trading on margin increases the financial risks.
Before deciding to trade in financial instrument or cryptocurrencies you should be fully informed of the risks and costs associated with trading the financial markets, carefully consider your investment objectives, level of experience, and risk appetite, and seek professional advice where needed.
Fusion Media would like to remind you that the data contained in this website is not necessarily real-time nor accurate. The data and prices on the website are not necessarily provided by any market or exchange, but may be provided by market makers, and so prices may not be accurate and may differ from the actual price at any given market, meaning prices are indicative and not appropriate for trading purposes. Fusion Media and any provider of the data contained in this website will not accept liability for any loss or damage as a result of your trading, or your reliance on the information contained within this website.
It is prohibited to use, store, reproduce, display, modify, transmit or distribute the data contained in this website without the explicit prior written permission of Fusion Media and/or the data provider. All intellectual property rights are reserved by the providers and/or the exchange providing the data contained in this website.
Fusion Media may be compensated by the advertisers that appear on the website, based on your interaction with the advertisements or advertisers
© 2007-2024 - Fusion Media Limited. All Rights Reserved.