The creator of Atomic Wallet is paying up to $1 million to white hat hackers who find weaknesses in its wallet software. This December 18 announcement coincides with a class action lawsuit against the developer after a June $100 million hack.
The developer is calling ethical hackers and security professionals worldwide to review its open-source code to find and disclose software vulnerabilities and security flaws. White hat hackers who find the most critical vulnerability—one that allows wallet attacks or drains without physical access, malware, or social engineering—will receive $100,000. The requirements indicate an internet attack, indicating a code or dependency problem.
Participation in the Bug Bounty Program is open to anyone with the skills and determination to help Atomic Wallet strengthen its security infrastructure. Whether you’re an experienced cybersecurity professional or a passionate hobbyist, your contributions are welcome.
- Bounty Rewards:
- $100,000 for discovering a vulnerability with the ability to attack/drain a wallet without physical access, installed malware, or social engineering, indicating an actual over-the-internet attack and a flaw in our code or dependencies
- Up to $10,000 for critical-risk vulnerabilities
- Up to $5,000 for high-risk vulnerabilities
- Up to $1,500 for medium-risk vulnerabilities
- Up to $500 for low-risk vulnerabilities
The cumulative prize pool of $1,000,000 is a testament to Atomic Wallet’s commitment to the highest levels of data security and enhancing app functionality.
Atomic Wallet founder Konstantin Gladych stressed the bug bounty initiative’s security benefits. He believed the worldwide community could improve cybersecurity and user experience by pooling their ingenuity and knowledge.
This bug bounty program was inspired by a June cybersecurity attack that stole over $100 million in bitcoins from Atomic Wallet customers. The major vulnerability was reported by blockchain analytics platform Elliptic. Atomic Wallet was sued by attack victims in a class action. The developer has actively sought to dismiss a Colorado lawsuit, claiming no US ties.
Atomic Wallet confirmed that 0.1% of users lost cash from the cybersecurity assault. A user device virus, infrastructure compromise, man-in-the-middle assault, or malware code injection were suspected causes. The bug bounty program shows the developer’s dedication to protecting user assets in the evolving blockchain cybersecurity landscape by strengthening security and preventing vulnerabilities.
ALSO READ
- Atomic Wallet Faces Class Action Lawsuit Over $100M Crypto Hack
- Atomic Wallet hack: What we know so far and what’s still unclear