A responsible disclosure program is a process that organizations establish to encourage security researchers and other ethical hackers to report security vulnerabilities they discover in the organization's products or services so that the organization can fix them before malicious actors exploit them.
At Dash Hudson, we greatly value the support of cybersecurity community members in helping us maintain our high cybersecurity standards. If you identify a security vulnerability relating to our platform, please notify us promptly before disclosing the vulnerability to the outside world so we can take the necessary measures.
Please keep all information relating to the discovered vulnerability confidential from all third parties for a period of at least 60 days, allowing us to identify and implement the measures needed to address the issue you have reported.
The current scope for reporting includes the following websites:
If you have identified a security vulnerability, please proceed as follows:
Notify us as soon as possible via email to email@example.com
Please include the following information in your report:
Do not take any actions beyond what is needed to identify and verify the issue. Please do not use the identified security vulnerability to your advantage and avoid storing any confidential data obtained due to the issue.
We continuously monitor our internet-exposed assets to identify security issues and misconfigurations. We, therefore, kindly ask that you avoid reporting the following items if they don’t lead to actual exploitation:
If you report a security vulnerability relating to any of our websites specified above, we will process your report as follows.