and HackerOne complete bug bounty for user asset protection

Decentralized exchange recently announced it joined forces with the world’s largest ethical hacker community, HackerOne, to launch the HackerOne Challenge bug bounty program. The program leverages on HackerOne’s network of security experts to search and provide solutions for vulnerabilities in’s code; in turn, helping to secure

During June 1st through June 16th of last month, security experts from Hackerone’s 100,000-strong white hat hacker community were invited to subject’s site to extensive penetration tests (used by security experts to identify security vulnerabilities and their potential impact).

At the conclusion of the HackerOne Challenge, three hackers found a total of five vulnerabilities (one high-risk, one medium-risk and three low-risk). All five vulnerabilities were patched within two days of the release of the pen test results.

Founded in 2012 by a group of hackers and security leaders passionate about making the Internet safer, HackerOne is now the largest bug bounty and vulnerability coordination platform in the market. The platform provides best-in-class workflows that allow companies to define disclosure policies, then work directly with ethical hackers to resolve security vulnerabilities before they can be criminally exploited. To date, the company boasts Internet industry leaders such as Facebook, Twitter, Uber, Yahoo and Adobe, top-tier blockchain companies such as Coinbase and Rootstock, and multiple government departments as part of their clientele. has also moved to work together with HackerOne. With our shared respect for open-source technology, we were able to very quickly and smoothly partner on the HackerOne Challenge.

The team said:

“Security is and has always been a priority for the team. The HackerOne Challenge has been a fruitful exercise, allowing us to leverage the combined efforts of many third-party security experts to test our platform and verify its security.”

From a technical perspective, the trading platform employs several methods to ensure the security of user assets:

Before going live, the platform has passed multiple rounds of rigorous testing and code audits. If any security vulnerabilities are discovered by smart contract experts, they are obligated to provide a patch as soon as possible and prevent adverse consequences for users. Hence, the recent allowAnyone bug identified in multiple ERC20 smart contracts did not appear on the platform.

Moving forward, will continue to invest resources on blockchain and smart contract security, as well as partner with security companies such as HackerOne to make security our top priority so that users can be assured of the security, transparency, and reliability of the trading environment and the safety of their assets.

Exit mobile version