8 February, 2016, New Delhi: MobiKwik, today announced its first bug bounty program aimed at further strengthening its cybersecurity efforts in the field of digital payments.
Having seen the gradual rise of security threats against tech platforms in the last year, MobiKwik’s full-fledged bounty program seeks to find gaps in the system and patch it immediately. Bug hunters will not only be recognized for their efforts but also rewarded in accordance to their severity of the bugs highlighted.
With over 25 million users and 50,000 retail partners on board including the likes of Big Bazaar, Uber, and IRCTC; MobiKwik aims to further strengthen its hold over the digital payments ecosystem in India by making its platforms more robust.
Speaking about the bug bounty program, Bipin Preet Singh,CEO said, “MobiKwik provides a secure, seamless, and rewarding payment experience. With the introduction of the bug bounty program we are now taking a crucial step forward in further strengthening the security of our wallet. We encourage security researchers and bug hunters to reach out to us and make a responsible disclosure when they detect any vulnerabilities.”
The bug bounty programs seek to address crucial security flaws like Cross-Site Scripting (XSS), SQL Injection, Misuse/Unauthorized use of MobiKwik’s APIs, Improper TLS protection and Leaking of sensitive customer data (especially anything in the scope of PCI). With the discovery of the bugs, MobiKwik’s security team will analyze the flaw and issue a patch for the same in the least possible time. Depending on eligibility bug hunters stand to earn cash rewards from MobiKwik.