Home   »   News   »   Business News   »   ExpressVPN Increased Bug Bounty Reward to $100,000
ExpressVPN Bug Bounty Reward

ExpressVPN Increased Bug Bounty Reward to $100,000

Business News News April 8th 2022

ExpressVPN is well known internationally for its VPN services. The company is now paying $100,000 to researchers who can uncover and show ExpressVPN in-house technology’s serious problems, TrustedServer, using Bugcrowd’s Bug Bounty service.

ExpressVPN has claimed this to be its greatest single bounty on the Bugcrowd platform. This bug bounty sums 10times higher than Express VPN’s previous prize, which demonstrates the company’s dedication to delivering the important privacy safeguards to its customers.

Nick McKenzie, Chief Information and Security Officer at Bugcrowd, said, we are very excited to see a leader in the online privacy and security world taking a forward step by collaborating with our community of cyber researchers, to ultimately work together, in in-order to ensure a safe online experience to everyone. ExperssVPN’s ongoing partnership with Bugcrowd since 2022 shows its commitment to a strong security posture and its constant zeal to improve the security of its products and services. We hope this encourages more researchers to join the crowd, and be a part of finding solutions to secure the digitally connected world.


VPN Server:

ExpressVPN has created a TrustedServer Technology to drastically reduce the difficulties that are faced by traditional server administration. ExpressVPN is now going to step up further by compensating users by assisting them to enhance their security. Additionally, it will provide an independent assessment by PwC to support the promises made about TrusterServer’s security.

ExpressVPN has invited Bugcrowd security researchers to test the following sorts of security concerns in their VPN servers:

  • Unauthorized or Remote code execution access to a VPN server.
  • Suspectable errors or vulnerabilities in ExpressVPN’s VPN server that allows for the disclosure of customers’ real IP addresses or the monitoring of user activity.

Shaun Smith, Software Engineering Fellow at ExpressVPN and the architect behind TrustedServer, said that the company is already known as the world’s first and most advanced VPN server technology, thus we also want to work with the community to elevate the company’s further growth. For that, by using the ingenuity of Bugcrowd’s security researchers to help us further we tend to improve the security of TrustedServer. We are excited to show our community that it’s important for us to help them with what they actually need.

Mr. Smith added that the traditional VPN infrastructure is may be vulnerable to some privacy and security risks. This is because the most traditional and outdated approaches to managing the server infrastructure cannot account for various security and privacy risks that are very important for VPN service providers to mitigate. Thus, we built a TrustedServer to address those risks and make the same solution scalable, consistent, and secure across all servers.


If you enjoyed reading this news, you are surely going to cherish these too –