Bug Bounty

OKCoin Bug Bounty

Report any security vulnerability found on OKCoin and get rewarded for a successful report.

ETH Total Reward Distributed

Eligibility

You are welcome to report any vulnerability online via OKCoin Security Response Center. Please do not disclose the vulnerability until it is resolved. We promise every report will be evaluated, followed up, and responded by a dedicated team. All white-hats who contribute to accepted reports will be given rewards.

See detailed rules

Risk Levels and Rewards

Risk Level Description Reward
Serious Loopholes in core business systems that endanger the security of users assets and data. 8-10 ETH
High Unauthorized operation, serious SQL injection, loopholes that could cause large-scale impact to users, source code leakage, etc. 5-7 ETH
Medium Loopholes that could affect some users, alteration of user data, etc. 2-4 ETH
Low Regular CSRF, SMS bombs, normal data leakage, etc. 0-1 ETH

Safety First

OKCoin Security Response Center wishes to create a more secure and stable digital asset exchange together with all users and white-hats. We welcome everyone to report any vulnerability found on OKCoin website or app, helping us improve the security of our products and businesses. Our dedicated team will take immediate actions to follow up and inform you the results in time.

We will also offer you digital asset rewards according to the risk level of your reported vulnerabilities as a gesture of appreciation.