Jumbo Privacy

  • $200 – $4,500 per vulnerability
  • Up to $20,000 maximum reward
  • Partial safe harbor
  • Managed by Bugcrowd

Reward increases for the JumboPrivacy Applications

Jumbo Privacy has increased its rewards as of May 06, 2020!

Jumbo Privacy will give special consideration to vulnerabilities which lead to extraction of user data on a wide-scale. Submissions in this category if they meet the below specifications could be eligible for a $10,000 bounty. The guidelines for consideration for this reward are as follows:

  • It should be a remote vulnerability (e.g. no physical access to the devices)
  • It should lead to the extraction of user-data for a group of Jumbo users, not a single target. We will be giving consideration to vulnerabilities targeted at a single user, as long as it's a repeatable attack.
  • The reward will reflect the type of data that can be extracted through this vulnerability (i.e. personal data is more valuable than opaque identifiers, credentials are high-value type of data)

For further details, please review the program brief.

If you have any questions, please reach out to support@bugcrowd.com.