HackenProof Blog / For Hackers / [New Bug Bounty] BKEX Has Launched Bug Bounty With Up to $10 000 Reward Per Critical Vulnerability

[New Bug Bounty] BKEX Has Launched Bug Bounty With Up to $10 000 Reward Per Critical Vulnerability

Meet BKEX

BKEX is a digital asset trading platform featuring 1200+ cryptocurrencies.

The crypto exchange offers 4 activities:

  • spot trading
  • futures trading
  • deposit & staking earning
  • participating in a mining pool

Over 1.8 million BKEX users will rely on you to protect their assets!

Check Out The Rewards

If you find a vulnerability according to the bounty rules, BKEX will reward you:

  • Critical: $2,500 – $10,000
  • High: $800 – $2,500
  • Medium: $200 – $500
  • Low: $50 – $100

Join Our Bounty Hunt

There are 9 assets to scope:

  • 3 websites
  • 1 API
  • 2 Android apps
  • 3 iOS apps

Make sure your reports contain info about these incidents:

  • Business logic issues
  • Payments manipulation
  • Remote code execution (RCE)
  • Injection vulnerabilities (SQL, XXE)
  • File inclusions (Local & Remote)
  • Access Control Issues (IDOR, Privilege Escalation, etc)
  • Leakage of sensitive information
  • Server-Side Request Forgery (SSRF)
  • Cross-Site Request Forgery (CSRF)
  • Cross-Site Scripting (XSS)
  • Directory traversal
  • Other vulnerability with a clear potential loss

To increase your chances of finding a critical bug, read BKEX API documentation here & here.

Once you’re ready, click here to join the bounty hunt!