The bounty program for discovering vulnerabilities
Security is a top priority for us, that is why we launched a vulnerability detection bounty program. You can check out the terms and conditions below.
To receive a reward for detecting vulnerabilities, you need to:
Under these conditions, we promise not to take any steps to persecute the person(s) thus helping us detect the problem.
There is no limit on the maximum reward size, we reserve the right to increase the size of the reward depending on the seriousness of the vulnerability found. Researchers are more likely to receive increased rewards if they can demonstrate how the found vulnerability may be used to cause the most harm.
The list below shows an approximate reward for detecting vulnerabilities:
Resources available for studying for vulnerabilities: whitebit.com, api.whitebit.com
Rewards for DDoS, Self-XSS, Spam, and Social engineering attacks will NOT be granted.