Cybersprint’s goal is to make the world more cyber-secure. Naturally, we strive towards a high level of security for our own systems and online presence. However, it can occur that Cybersprint’s systems contain a weak spot.
If you have found a potential security vulnerability in one of Cybersprint’s systems or domains, that’s actually something we value, and would like to thank you for bringing it to our attention. That’s why we have set up our responsible disclosure process as described below. Thanks to your finding, we can co-operate with you to take the necessary measures and mitigate the vulnerability.
We kindly ask you to:
For the security of our systems, and to secure the service we provide to our customers, we ask you to please take note of the following:
What to report
Examples of vulnerabilities could be:
The following cases are excluded from this responsible disclosure programme. Please do not report:
What you can expect from us
We will only use your personal information to get in contact with you and to undertake actions with regard to your reported vulnerability. We will not distribute your personal information to third parties without your permission, unless we are required to do so by law, or if an external organisation takes over the investigation of your reported vulnerability.
This is not an invitation to actively start scanning or hack us. If you happen to find something (by accident), we would like to know as soon as possible on soc [at] cybersprint.com.
You may use our PGP key to encrypt sensitive information that you send by email.