Security Warning – External Emails
Dear Reader,
We are aware of the fake emails periodically sent from typo-squatted or cyber-squatted domains imitating the Open Bug Bounty project.
Please note that all genuine emails sent by the Open Bug Bounty project are always (i) digitally signed, and (ii) are sent only from the openbugbounty.org domain.
Any other domains, or emails sent from them, have no affiliation whatsoever with the Open Bug Bounty project. The fake emails usually contain false information about the vulnerabilities on your website – that in reality do not exist – and an invitation to contact the “researcher” directly for details.
If you receive a fake email, please:
- Ignore the impersonating email. Do not reply to scammers.
- Report the squatted domains, which are used to send the fake emails, to domain registrars.
- Get in touch with us may you need help or have information that may help unmask the charlatans.
Sincerely,
Open Bug Bounty Team