MediaLab - Kik Vulnerability Disclosure Program

Program stats

  • Vulnerabilities rewarded 10
  • Validation within 6 days 75% of submissions are accepted or rejected within 6 days

Latest hall of famers

Recently joined this program

Kik is a messaging app that was founded in 2009 by a small but passionate group of University of Waterloo students. Today, it has millions of users and is focused on being the best place to have a meaningful conversation with someone new.

No technology is perfect and Kik believes that working with skilled security researchers across the globe is crucial in identifying weaknesses in any technology. We are excited for you to participate as a security researcher to help us identify vulnerabilities in our targets. Good luck, and happy hunting!


For the initial prioritization/rating of findings, this program will use the Bugcrowd Vulnerability Rating Taxonomy. However, it is important to note that in some cases a vulnerability priority will be modified due to its likelihood or impact. In any instance where an issue is downgraded, a full, detailed explanation will be provided to the researcher - along with the opportunity to appeal, and make a case for a higher priority.


Program rules

This program follows Bugcrowd’s standard disclosure terms.

For any testing issues (such as broken credentials, inaccessible application, or Bugcrowd Ninja email problems), please email We will address your issue as soon as possible.