Capital.com Teams Up with Intigriti for New Bug Bounty Initiative

Thursday, 15/08/2024 | 16:34 GMT by Jared Kirui
  • The company has invited security researchers and ethical hackers globally to identify and report software vulnerabilities.
  • In exchange for successful discoveries, the ethical hackers will receive cash rewards based on the severity of the discoveries.
Capital.com

Capital.com has launched a public bug bounty program. This initiative, hosted on the crowdsourced security platform Intigriti, is reportedly part of the company’s commitment to safeguarding user data and platform integrity.

Global Call for Ethical Hackers

The company has invited security researchers and ethical hackers globally to proactively identify and address potential vulnerabilities, offering cash rewards for discoveries that enhance the platform's security, according to a statement sent to Finance Magnates.

By engaging ethical hackers and security researchers, Capital.com aims to strengthen its defenses and foster a collaborative environment for continuous improvement. The company has described the new bug bounty program as a proactive stance on cybersecurity.

The company has encouraged participants in the program to identify and report software security vulnerabilities within Capital.com's platforms. In exchange for their expertise, these ethical hackers will earn cash rewards based on the severity and potential impact of the vulnerabilities they uncover.

Speaking about the program launch, Pavel Krasilevich, Capital.com’s Head of IT Security, said: “At Capital.com, we take our responsibility to protect our customers seriously. By launching this public bug bounty program, we are not only opening our doors to the brightest minds in cybersecurity but also taking active steps to stay ahead of potential threats.”

“This initiative reflects our proactive approach to safeguarding our platform and users, and we are excited to collaborate with the global cybersecurity community to help ensure our platform remains both trusted and secure.”

Outsourced Security Platform

The partnership with Intigriti, a crowdsourced security platform, is central to Capital.com's bug bounty program. Intigriti offers a framework for managing the program, ensuring that security researchers have clear guidelines and submission criteria to follow.

Security researchers interested in participating can find detailed information and guidelines on the Intigriti platform, where they can contribute to Capital.com's mission of maintaining a secure and trustworthy trading environment.

Last month, Capital.com announced that it will no longer charge overnight funding fees on non-leveraged CFD trades for stocks and digital assets. This step reportedly aims to eliminate certain fees for traders who maintain positions beyond a single trading day.

The company cited a shift in retail trader behavior towards extended holding periods. Based on the firm’s data, 89% of all non-leveraged overnight positions in Q2 2024 were in stocks and crypto.

Capital.com has launched a public bug bounty program. This initiative, hosted on the crowdsourced security platform Intigriti, is reportedly part of the company’s commitment to safeguarding user data and platform integrity.

Global Call for Ethical Hackers

The company has invited security researchers and ethical hackers globally to proactively identify and address potential vulnerabilities, offering cash rewards for discoveries that enhance the platform's security, according to a statement sent to Finance Magnates.

By engaging ethical hackers and security researchers, Capital.com aims to strengthen its defenses and foster a collaborative environment for continuous improvement. The company has described the new bug bounty program as a proactive stance on cybersecurity.

The company has encouraged participants in the program to identify and report software security vulnerabilities within Capital.com's platforms. In exchange for their expertise, these ethical hackers will earn cash rewards based on the severity and potential impact of the vulnerabilities they uncover.

Speaking about the program launch, Pavel Krasilevich, Capital.com’s Head of IT Security, said: “At Capital.com, we take our responsibility to protect our customers seriously. By launching this public bug bounty program, we are not only opening our doors to the brightest minds in cybersecurity but also taking active steps to stay ahead of potential threats.”

“This initiative reflects our proactive approach to safeguarding our platform and users, and we are excited to collaborate with the global cybersecurity community to help ensure our platform remains both trusted and secure.”

Outsourced Security Platform

The partnership with Intigriti, a crowdsourced security platform, is central to Capital.com's bug bounty program. Intigriti offers a framework for managing the program, ensuring that security researchers have clear guidelines and submission criteria to follow.

Security researchers interested in participating can find detailed information and guidelines on the Intigriti platform, where they can contribute to Capital.com's mission of maintaining a secure and trustworthy trading environment.

Last month, Capital.com announced that it will no longer charge overnight funding fees on non-leveraged CFD trades for stocks and digital assets. This step reportedly aims to eliminate certain fees for traders who maintain positions beyond a single trading day.

The company cited a shift in retail trader behavior towards extended holding periods. Based on the firm’s data, 89% of all non-leveraged overnight positions in Q2 2024 were in stocks and crypto.

About the Author: Jared Kirui
Jared Kirui
  • 1370 Articles
  • 17 Followers
About the Author: Jared Kirui
Jared is an experienced financial journalist passionate about all things forex and CFDs.
  • 1370 Articles
  • 17 Followers

More from the Author

Retail FX

!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|} !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}