In constant contact with its community of security researchers, YesWeHack can testify that it is complex for a security researcher and therefore, for a whistle-blower to report security flaws -in a coordinated way- to impacted organizations. Especially, if those organizations do not have a Bug Bounty program registered on Yes We Hack
Discoverers of vulnerabilities often experience difficulties on how to report them to the organizations concerned without disclosing them to a third party and unfortunately direct contact with companies constitutes a legal risk.
A long-time partner of the security research community through its founders, YesWeHack is proud to present ZeroDisclo.com. This non-profit platform provides the technical means and the required environment for all to adopt the coordinated reporting of vulnerabilities commonly known as "Coordinated Vulnerability Disclosure".This lock means this form below is encrypted with OpenPGP in your very browser
Ready ? Ok, now complete this form. (If you're using tor, click here)