Open Bug Bounty selected among the
Top 5 Bug Bounty programs to watch
in 2021 by The Hacker News

For security researchers
Report a Vulnerability
Submit, help fixing, get kudos.
For website owners
Start a Bug Bounty
Run your bounty program for free.
1,120,734 coordinated disclosures
715,444 fixed vulnerabilities
1,469 bug bounty programs, 2,936 websites
25,855 researchers, 1,381 honor badges

TeraByte Inc Bug Bounty Program

TeraByte Inc runs a bug bounty program to ensure the highest security and privacy of its websites. Everyone is eligible to participate in the program subject to the below-mentioned conditions and requirements of TeraByte Inc

Open Bug Bounty performs triage and verification of the submissions. However, we never intervene to the further process of vulnerability remediation and disclosure between TeraByte Inc and researchers.

Bug bounty program allow private and public submissions.

Bug Bounty Scope

The following websites are within the scope of the program:

*.multi-boot.com
*.drive-image-backup.com
*.terabyteunlimited.com

Non-Intrusive Submissions Handling

The following section encompasses submission of the vulnerabilities that do not require intrusive testing as per Open Bug Bounty rules:

- Cross Site Scripting (XSS)
- Open Redirect

- Cross Site Request Forgery (CSRF)
- Improper Access Control

General Requirements:

There are currently no general requirements.

Testing Requirements:

There are currently no testing requirements.

Possible Awards:

potential money for any actual exploits. Nothing for features or designs.

Other Submissions Handling

Website owner want to receive information about other vulnerabilities

Notifications:

email

PGP Key:

Show key

-----BEGIN PGP PUBLIC KEY BLOCK-----
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=d6Xe
-----END PGP PUBLIC KEY BLOCK-----

General Requirements:

There are currently no general requirements.

Testing Requirements:

There are currently no testing requirements.

Possible Awards:

potential money for actual exploits that compromise data.

Special Notes:

No need to report DMARC doesn't exist. No need to report that downloads directory index can be shown (by design). No need to report features of wordpress that don't compromise data.

Community Rating

Provided by security researchers who reported security vulnerabilities via this bug bounty program:

 
Response Time  Information How quickly researchers get responses to their submissions.
Remediation Time  Information How quickly reported submissions are fixed.
Cooperation and Respect  Information How fairly and respectfully researchers are being treated.

Researcher's comments

No comments so far.

  Latest Patched

 07.12.2021 avto.net
 07.12.2021 mobile.customs.gov.my
 07.12.2021 yavoriv-rada.gov.ua
 07.12.2021 ceskatelevize.cz
 07.12.2021 archive.org
 07.12.2021 mcor.swd.gov.hk
 07.12.2021 royallib.com
 07.12.2021 unicaen.fr
 06.12.2021 yallamotor.com

  Latest Blog Posts

11.11.2021 by mistry4592
The Most used Chrome Extensions are Used For Penetration Testing.
08.10.2021 by NNeuchi
How I Found My First Bug Reflected Xss On PIA.GOV.PH(Philippine Information Agency)
26.08.2021 by PyaePhyoThu98
eG Manager v7.1.2: Improper Access Control lead to Remote Code Execution (CVE-2020-8591)
14.07.2021 by Open Bug Bounty
Interview With Open Bug Bounty
25.05.2021 by 0xrocky
Google XSS Game

  Recent Recommendations

@EplayerTv     1 December, 2021
    Twitter EplayerTv:
Very good researcher, also provides clear instructions how to easily fix issue.
@martin_ouwehand     30 November, 2021
    Twitter martin_ouwehand:
We thank KhanJanny for his responsible disclosure of an XSS in one of our Web sites
@Securityteam11     29 November, 2021
    Twitter Securityteam11:
Indrakant notified us responsibly in relation to an issue with one of our websites. Upon seeking further information. his response was prompt and thorough. Thank you Indrakant great effort.
@chrisbeach     29 November, 2021
    Twitter chrisbeach:
Helped me fix a bug on my site - thanks joe-grizzly!
@chrisbeach     27 November, 2021
    Twitter chrisbeach:
Thanks very much for reporting a bug in my website