The Microsoft-owned social networking large LinkedIn has stepped as much as welcome additional safety enhancements. Particularly, LinkedIn has now made its personal bug bounty program on HackerOne obtainable for the general public to take part.
LinkedIn Bug Bounty Program
As introduced through a current put up, the favored social media platform LinkedIn has now formally introduced its bug bounty program.
LinkedIn is likely one of the largest social platforms identified for skilled networking. It at present boasts over 830 million customers.
This huge person base naturally attracted cybersecurity threats. Therefore, the platform saved showing for breaches, bugs, and information scraping within the information. Nonetheless, the service continued working to strengthen its safety, and now, they’ve moved on to welcoming bug studies from everybody.
As elaborated, the platform already had a bug bounty program working since 2014 on HackerOne. Nevertheless, it was a non-public, invite-only program. However now, the platform has opened it up for everybody to take part, so long as the bugs fall into the accepted classes.
Since 2014, our personal bug bounty program with HackerOne, which connects companies with cybersecurity researchers, has been a key a part of our product safety efforts having awarded greater than $250,000 throughout practically 500 submissions overlaying the LinkedIn member platform and cell purposes.
In keeping with its HackerOne web page, this system accepts bug studies concerning XSS, CSRF, SQL injection, server-side code execution, authentication points, and entry management vulnerabilities. Whereas denial of service, social engineering, clickjacking, password complexity, and different related points that don’t instantly affect the LinkedIn infrastructure stay out of scope.
As for the bounties, right here’s what LinkedIn gives, relying upon the bug severity.
- Low: $100 – $250
- Medium: $250 – $2500
- Excessive: $2500 – $5000
- Crucial: $5000 – $10000
So now, the aspiring {and professional} bug bounty hunters have yet another alternative to check their abilities and win bounties. Customers on this program can go to LinkedIn’s HackerOne web page to know this system particulars and participation pointers.
