Yuga Labs Announces Bug Bounty Program
Yuga Labs announced a bug bounty program through HackerOne on Wednesday, offering rewards of up to $50,000 for those who find vulnerabilities and issues in the company's platforms, social accounts, and communications channels.
HackerOne is a security platform that connects businesses with ethical hackers and cybersecurity testers. Yuga Labs had previously run the bug bounty program since July on an invite-only basis with "a network of 800+ responsible hackers", but is now opening it up to the broader public.
Rewards will be provided for "valid vulnerability reports that impact our services, websites, social accounts, and Discord servers" and "anything that can cause disruption to our community – like taking over, manipulating content, or injecting arbitrary code into our websites," according to the blog.
The payout structure is broken into the following brackets:
- Low severity issues: $250-$1,000
- Medium severity issues: $1,000-$5,000
- High severity issues: $5,000-$25,000
- Critical severity issues: $25,000-$50,000