E-commerce platform Lazada has launched its first public bug bounty program.
The website, which was founded in Singapore but serves countries across Southeast Asia, is offering up to $10,000 for successful vulnerability reports.
It comes after a previously private program, launched in January 2020, that has already paid out around $150,000 in rewards.
In a statement, Lazada said it hopes that the program will make a statement to the e-commerce industry, “highlighting the priority it places on security and transparency for its customers and partners”.
Lazada is also looking for bugs that affect its business integrity or continuity, “although, any flaw that could demonstrate a direct impact on their security and their users would be handled with due consideration”.
Franck Vervial, head of cyber defense at Lazada, said: “By launching this latest public bug bounty program, we are sending a clear message to everyone, that we value the importance of data in our possession.
This post was originally published by The Daily Swig on portswigger.net
