After years of invitation-only activity, we are excited to launch our public Bug Bounty Program in partnership with YesWeHack
We believe that maintaining a visible crowdsourced security program helps us to build a sound cybersecurity posture, that’s why today we broaden our call to the global community of bug bounty hunters and security researchers.
As a matter of fact, we offer higher rewards and exclusive challenges to our community such as bounty rewards-up to 20,000 EUR for critical issues, exclusive in-scope features, and hardware devices, invitations to live hacking events in France, and dedicated communication channels.
This decade will be marked by the growing importance of healthcare software and health data hosting. Therefore, we rely on a talented and creative workforce to report security weaknesses and vulnerabilities in our applications.
These efforts will benefit the product and engineering teams to deliver secure products and all of the findings serve to push our secure development workflow to be more resilient, scalable, and consistent over security reviews, hardening, and detection.
On our side, Doctolib’s application cybersecurity team is engaged to warmly welcome any security researcher within a safe harbor policy and offer the best triage experience in terms of response time, respect and expectation.
To know more about our bug bounty program, explore our policy on Doctolib and join the bug bounty program on YesWeHack.
If you have any feedback, questions, or concerns, feel free to reach us at report@doctolib.com.
Doctolib's Cybersecurity team
Top comments (0)