Nord Security, the parent company of NordVPN (opens in new tab), has officially launched a bug bounty program for its VPN (opens in new tab) service as well as for its password manager NordPass and its file encryption service NordLocker.
NordVPN first launched its bug bounty program (opens in new tab) back in December of 2019. However, as Nord Security's product family has expanded, the company has now extended the program to include NordPass (opens in new tab) and NordLocker (opens in new tab).
- We've built a list of the best business VPN (opens in new tab) solutions around
- These are the best Windows 10 VPN (opens in new tab) services on the market
- Also check out our roundup of the best Mac VPN (opens in new tab)
Through its bug bounty program, Nord Security is giving ethical hackers the chance to discover potential security vulnerabilities, report them and earn monetary rewards. The company's CTO Marijus Briedis provided further insight on its bug bounty program in a press release, saying:
“Security is our number one priority in all of our products. Therefore, we want to engage as many expert penetration testers as we can. The Bug Bounty initiative allows us to utilize all the security talent available and empowers everyone in the community to help us build a safer online world.”
Bug bounty program
Nord Security's bug bounty program is implemented via the HackerOne (opens in new tab) platform which helps connect businesses with penetration testers and security researchers around the world. In fact, many of the world's biggest brands including Starbucks (opens in new tab), Sony (opens in new tab) and many others depend on the company's services for their own bug bounty programs.
“Nord Security uses a managed service from HackerOne, which helps us progress in better program design and bug management and provides us with additional support running our program from end to end”, added Briedis.
Nord Security and HackerOne plan to celebrate the program's launch by running a two-week event from March 31 to April 14 where ethical hackers will receive double the normal amount for finding high and critical vulnerabilities in NordVPN. However, only reports related to NordVPN's desktop and mobile apps will be considered eligible during the event.
While security researchers and ethical hackers can now earn bounties (opens in new tab) for finding vulnerabilities in NordVPN, NordPass and NordLocker, Nord Security's customers can rest easy knowing that their software is secure.
- We've also featured the best proxy (opens in new tab)