Get Rewards for finding Bugs
CoinDCX is one of the most secure and safe exchanges both in India and across the globe. At CoinDCX, the security of the digital assets and the private information of our users is paramount. Our platform is built with industry-leading security protocols that are regularly tested to check any violations. Whenever loopholes are found in the system, we plug them immediately without any errors.
CoinDCX recognizes the value of security experts and researchers in helping us with making our community safer. This is why CoinDCX is introducing its BUG BOUNTY PROGRAM.
We encourage responsible disclosure of security vulnerabilities via this program. Please follow the program policies to report your bugs. Breaching the program policies can also result in legal consequences on the violator.
The rewards of the Bug Bounty Program will be determined based on the severity of the reported bug.
Low- USD 100 in BTC
Medium – USD 500 in BTC
High – USD 750 in BTC
Critical – USD 1000 in BTC
Note – This program is for the disclosure of platform security vulnerabilities only. If you believe your CoinDCX account has been compromised, kindly raise a support ticket at [email protected]
The report must demonstrate a platform vulnerability in services provided by CoinDCX to CoinDCX and CoinDCX customers. The report must clearly explain the severity of the exploitation of the platform and other following consequences the reported bug can have. The severity of the bug will be evaluated based on the exploitation and the consequences a bug can pose on the platform. We suggest to keep the report as detailed as possible. If the report is not detailed enough to reproduce the issue, the issue might result in lesser reward than the stated.
Responsible investigation and reporting includes agreement to the following policies:
Bugs that are eligible for this program are following:
Bugs that are out-of-scope hence stand ineligible for this program are following:
To report your bug kindly take the following steps
CoinDCX reserves the right to modify the Bug Bounty Program or cancel the Bug Bounty Program at any time.