Bug Bounty Program

Collaboration with HackerOne

HackerOne promises “peace of mind from security’s greatest minds.” Our collaboration with them offers the world’s most trustworthy ‘ethical hackers’ access to stress test our systems, locate bugs, and identify security vulnerabilities. 


Zota maintains a private, invite-only Bug Bounty Program, with the assistance of HackerOne. Invited researchers are eligible for payment; those not invited to the program may still submit a security bug or vulnerability, although such reports may not be eligible for payment.

To learn more about how to join our Bug Bounty Program, please visit HackerOne’s website. By submitting a security bug or vulnerability to Zota via HackerOne, you acknowledge that you have read and agreed to the Terms and Conditions set forth below. By providing a submission, you agree that you may not publicly disclose your findings or the contents of your submission to any third parties without Zota’s prior written approval.

Have you found a problem in our systems?

If you want to report a potential vulnerability, please email our team at [email protected].