Privacy isn't just a policy at TorGuard; it's our foundation, our core. We're dedicated to upholding the highest standards of security for our users, continuously informing the community about the latest vulnerabilities to enhance collective safety. Our mission is clear: to protect the privacy, anonymity, and security of internet users worldwide.
TorGuard is trusted by a diverse community of users, including cybersecurity experts, hobbyists, and everyday internet users, to provide a secure browsing experience. We believe in the power of community and the value of every contribution, whether from a seasoned professional or a curious newcomer. Together, we can forge the most secure VPN experience known to the internet.
This collective spirit of improvement and safety is why we're excited to remind everyone about our 2024 Bug Bounty Program. We're inviting our users, the vigilant eyes and minds, to join us in this endeavor. Your efforts in identifying vulnerabilities will reinforce the security of our services, and we're eager to reward your valuable contributions.
What is a Bug Bounty Program?
A bug bounty program invites individuals to critically examine a company's services for any security flaws or vulnerabilities. We're calling upon you to scrutinize TorGuard from all angles, to uncover areas we can fortify. Although we conduct regular and thorough security checks, fresh perspectives are invaluable in maintaining an impregnable defense.
Program Scope and Rules
The TorGuard Bug Bounty Program is focused on our servers, website, and mobile applications. It does not extend to our social media profiles. Our team is committed to carefully evaluating every report, with the severity and validity of the findings determining the bounty rewards. We trust in our participants' understanding that TorGuard's decisions are conclusive.
Responsible Disclosure is Key
We urge participants to report their findings in a responsible and immediate manner, to the bug bounty PrivateMail address found at the end of this article. Premature disclosure of bugs is discouraged, as it may empower malicious actors. We pledge transparency and prompt action upon the repair and disclosure of any vulnerabilities.
Testing Guidelines
We emphasize the importance of responsible testing. Actions that could harm TorGuard’s services or compromise our ability to serve customers are strictly prohibited. We encourage communication with our team before initiating tests to ensure clarity and adherence to guidelines.
What Qualifies as a Bug?
We're interested in any discovery within TorGuard’s website, apps, or servers that could jeopardize user data or security. However, vulnerabilities tied to outdated browsers, issues outside our threat model, phishing, social engineering, or improbable user actions do not qualify.
The Reward
The bounty for each finding will vary, reflecting the significance of the vulnerability uncovered. Rewards are exclusively available to the first reporter of a bug, highlighting the importance of swift action. Adherence to the rules not only ensures eligibility for rewards but also contributes to a safer internet for all.
Together, let's strengthen the fortress that is TorGuard. Your insights and discoveries are invaluable in our continuous quest for unparalleled security. Join us in this crucial program, and let's secure the digital realm, one bug at a time.
For reports and inquiries, reach out to: bugbounty[at]privatemail.com