We recognize the important role of security researchers in helping keep our community safe. You can disclose security vulnerabilities to Newton described on this page.
â€
½ñÈճԹϺÚÁÏ. believes effective disclosure of security vulnerabilities requires mutual trust, respect, transparency and common good between ½ñÈճԹϺÚÁÏ. and Security Researchers. Together, our vigilant expertise promotes the continued security and privacy of ½ñÈճԹϺÚÁÏ. customers, products, and services.
â€
½ñÈճԹϺÚÁÏ. accepts vulnerability reports from all sources such as independent security researchers, industry partners, vendors, customers and consultants. ½ñÈճԹϺÚÁÏ. defines a security vulnerability as an unintended weakness or exposure that could be used to compromise the integrity, availability or confidentiality of our products and services.
â€
This policy applies to any digital assets owned, operated, or maintained by ½ñÈճԹϺÚÁÏ., including public facing websites.
â€
â€
â€
½ñÈճԹϺÚÁÏ. recommends that security researchers share the details of any suspected vulnerabilities across any asset owned, controlled, or operated by ½ñÈճԹϺÚÁÏ. (or that would reasonably impact the security of ½ñÈճԹϺÚÁÏ. and our users) using the web form below. The ½ñÈճԹϺÚÁÏ. Security team will acknowledge receipt of each vulnerability report, conduct a thorough investigation, and then take appropriate action for resolution.
To submit a vulnerability, please send an email to bounties@newton.co. Please try to be as descriptive as possible including steps to reproduce the vulnerability and the impact of the vulnerability.
â€