Dear Researchers,
We’re excited to share some great news — bounties for all Medium and higher severity vulnerabilities on Capital.com have been permanently increased! 🚀
This isn't a limited-time bonus — it's now part of the program details until further notice. Your impactful findings now earn even more, every time.
We deeply appreciate your work in helping keep Capital.com secure. Thank you for being an essential part of our bug bounty community. We can’t wait to see what you discover next!
Stay sharp,
Capital.com Security Team
Dear Researchers,
We are thrilled to announce a second round of a 50% increase in all bounties for Capital.com on vulnerabilities with a severity of Medium or higher! 🎉
This special bonus applies to all qualifying reports submitted until the end of March 2025. Now is the perfect time to help secure our platform while earning even more for your impactful findings.
📅 Effective Immediately:
All Medium or higher severity vulnerabilities submitted until March 31, 2025 will be eligible for the increased bounty payouts.
The reward structure remains the same, but with a 50% boost for every qualifying vulnerability!
We look forward to receiving more of your valuable reports and working together to secure Capital.com.
Thank you for your continued dedication and being a crucial part of our bug bounty community! 🙌
Best regards,
Capital.com Security Team
Dear Researchers,
We are thrilled to announce a 50% increase in all bounties for Capital.com on vulnerabilities with a severity of Medium or higher! 🎉
This special bonus applies to all qualifying reports submitted until the end of November 2024. Now is the perfect time to help secure our platform while earning even more for your impactful findings.
📅 Effective Immediately:
- All Medium, High, and Critical severity vulnerabilities submitted until November 30th, 2024 will be eligible for the increased bounty payouts.
- The reward structure remains the same, but with a 50% boost for every Medium or higher qualifying vulnerability!
We look forward to receiving more of your valuable reports and working together to secure Capital.com.
Thank you for your continued dedication and being a crucial part of our bug bounty community! 🙌
Best regards,
Capital.com Security Team
Dear Bug Hunters,
We are excited to announce that we have our API documentation publicly available on testing environments. We invite security researchers to explore and use the API documentation listed below:
Backend API Documentation
Payment API Documentation
We encourage you to thoroughly review the documentation and test the APIs for any potential security vulnerabilities. Your contributions are invaluable in helping us maintain the highest security standards for our platform.
Thank you for your participation and dedication to making our system more secure.
Best regards,
Capital.com Security Team
Dear Researchers,
We're thrilled to announce expansion to the scope of our Bug Bounty Program! As part of our ongoing commitment to security and excellence, we've included two more components of our digital infrastructure:
Capital Public API Documentation: https://open-api.capital.com/
API Backend: https://api-capital.backend-capital.com/
These additions reflect our dedication to ensuring the robustness of our systems and the protection of our user data. We invite you to explore and test these newly included APIs, as your expertise is invaluable in identifying vulnerabilities that could impact the security and performance of our platforms.
Thank you for your continued support and dedication to making the digital world a safer place. We're excited to see the contributions you will make with these new opportunities.
Should you have any questions or need further information, please feel free to reach out.
Happy hunting!
Best Regards,
Capital.com Security Team
Dear Researchers,
Exciting news! We've widened the scope of our bug bounty program to include new areas. Your expertise is crucial in exploring these expanded horizons.
Added to Tier 3 scope:
- *.capital.com
Thank you for your ongoing commitment to security!
Best Regards,
Capital.com Security Team
Dear Researchers,
Get ready for an adrenaline-fueled bug hunting experience like never before! We are thrilled to announce the supercharged Bug Bounty Boost on Intigriti, packed with even more rewards and exhilarating opportunities.
Introducing an increased reward pool that will make your heart race with excitement! We are delighted to offer the chance to earn substantial rewards for your extraordinary findings. Brace yourself for the possibility of earning up to €10,000 for exceptional reports that truly push the boundaries of security testing.
We are thrilled to embark on this supercharged bug bounty adventure with you, and we can't wait to see what incredible discoveries you make. Remember, your contributions are not only pivotal in safeguarding our clients' digital assets but also in shaping the future of cybersecurity.
If you have any questions or need assistance, our team is here to assist you on this exciting journey.
Happy hunting, and let the bug bounty frenzy begin!
Best regards,
Capital.com Application Security Team
Hello hackers!
We have expanded the scope.
itcapital.io was added to Tier 3.
Thank you for your participation in our program, happy to see the new submissions in the future!
Greetings!
We have increased the rewards range:
Tier one from 1700-4400 to 2100-4800
Tier two from 1350-3200 to 1750-3600.
Thank you for your participation in our program, happy to see the new submissions in the future!
Hello hackers!
Within two weeks all mobile applications will move to the tier one.
Thank you for your participation in our program, happy to see the new submissions in the future!