Cubbit partners with Unguess Security for our bug bounty program aimed at encouraging and motivating ethical hackers to help us maintain the security of our geo-distributed cloud storage services Cubbit DS3 by reporting any vulnerabilities responsibly and effectively.
In-scope activities include analysis of any vulnerabilities on the web interface of Cubbit DS3 object storage application, including the exposed REST API.
We reserve the right to update this list from time to time without notice.
We offer up to 3,000.00€ per vulnerability depending on category and severity. Out-of-scope vulnerability reports will not be eligible for recognition.