Grindr Launches Bug Bounty Program in Partnership With HackerOne

We’re excited to announce that we’ve partnered with HackerOne, the leading security testing platform for large businesses.

Tom Quisel

Chief Technology Officer

October 26, 2020

April 23, 2024

•

min. read

Grindr Launches Bug Bounty Program in Partnership With HackerOne

Table of Contents

HackerOne helps organizations identify and address vulnerabilities before they can be exploited. Over the past few years, Grindr has performed a series of third-party penetration tests as part of our cybersecurity strategy; and while regular penetration testing will continue to be a key part of our strategy, this partnership adds to our multi-layered approach for all of our cybersecurity functions.

We believe HackerOne will be an effective complement to traditional penetration testing. Traditional penetration tests typically rely on a small team of security experts with deep experience finding exploits in applications. They’re a mainstay, but there may be limits to what a small team can do. HackerOne approaches the goal from the opposite angle. They open up penetration testing to a wide range of hackers with varying levels of expertise and areas of focus. Given this, we’re carefully scoping our HackerOne program to maximize the value of the vulnerabilities it surfaces. And of course, our engineering team prioritizes fixing those vulnerabilities above all other priorities. If you’re a security researcher, you can head over to our vulnerability report page to participate in the bug bounty program.

As a further measure, we’ve created an improved process for security-related reports to escalate directly from our customer service department to our security team and engineers. An effective security program takes awareness and commitment from across an organization, and we’re making sure everyone on the Grindr team has the knowledge they need to do their part.

Grindr is a part of a vibrant community and we’re 100% committed to ensuring our users’ security. We’re taking a multi-layered approach to protecting our users by employing traditional pen testing, HackerOne, and improved security report escalation. The rapid identification of vulnerabilities is only one part of our cybersecurity strategy, and we look forward to sharing more with you in future posts.

If you’re a security researcher with an interest in the Grindr HackerOne program, then check out the Grindr HackerOne directory page for more info.

-Tom Quisel, Chief Technology Officer | LinkedIn

Share this article

FIND & MEET YOURS

Grindr Launches Bug Bounty Program in Partnership With HackerOne

Find & Meet Yours

Find & Meet Yours

Browse bigger, chat faster.

Featured articles

Greek Parliament Legalizes Same-Sex Marriage in Milestone for LGBTQ+ Rights

After Label Split, JORDY’s Getting Horny

One Year As a Publicly-Traded Company: Celebrating our Accomplishments and Building Our Community Going Forward

Related articles

Horny for Pole and Hole: What Does Vers Mean?

What Is Anal Bleaching? Shine Light on the Behind

How to Be a Good Kisser: The Secrets of Seductive Smooching

¿Qué es un simp y por qué me llaman así?

¿Es bueno el semen en la cara? Trucos sexy de belleza

Sadist vs. Masochist: The Differences Explained

Cocktails and Cockfails: Navigating Whiskey Dick

¿Qué es un Furro? El Nudo Entre un Juego y la Realidad

Cómo Superar a Tu Ex: Nuestros 10 Mejores Consejos

Introducing Grindr Web

Introducing: Play Safe

Free HIV At-Home Test Kits Now Available on Grindr to the Entire Country Through Building Healthy Online Communities Partnership

Introducing ‘My Tags,’ a Better Way to Find and Be Found on Grindr

Grindr Partners With Equality Movement and MPOWER to Provide Free At-Home HIV Test Kits to Users in Georgia and Ireland

In response to CVE-2021-44228 (log4j)

Grindr Support for LGBTQ+ Community in Ukraine

An Update on our Progress Building AI Features for Grindr Users

Bringing the Global Gayborhood to Your Pocket, Starting with Travel

Company

Community

Legal

Find & Meet Yours