Contribution Bounty

  • Duration
    April 29th Monday ~ July 22nd Monday

  • CLBK will be rewarded for users who contribute the highest number of threat data (only validated threat data with threat levels) every month

    • 1st: 1,000,000 CLBK
    • 2nd: 600,000 CLBK
    • 3rd: 400,000 CLBK
    • 4th: 150,000 CLBK
    • 5th: 100,000 CLBK
    • Users with identical ranks will be re-ranked according to higher threat level, and submission date
  • Participation type
    Open, Ranking Chart updated real time
  • How to Participate
    sign up with Cloudbric Labs, and submit threat data to Threat DB
  • Rewards Distribution
    End of every month beginning May

Bug Bounty

  • Duration
    April 29th Monday ~ May 24th Friday
  • Target Scope

    Cloudbric Labs Homepage, Cloudbric Labs Threat DB

  • Target URL

    labs.cloudbric.com, labs.cloudbric.com/threatdb, and all other sub URLs under Threat DB

  • Bounty rewards differ per vulnerability level

    • Very High: 1,000,000 CLBK (When the web server has been turned over to third parties, or when the services are disrupted and become unavailable)
    • Medium: 300,000 CLBK (When the server has sustained limited damage, or when server information has been falsified)
    • Low: 10,000 CLBK (From the possibility of attacks, such as when data vulnerabilities are gathered, to minor bugs)
  • Participation violating the Bug Bounty Guidelines & Ineligibilities will not be acknowledged
  • Participation type
    Blind
  • How to Participate
    Sign up with Cloudbric, then submit Bug Bounty Form
  • Rewards Distribution
    Every Thursday beginning May. Cloudbric will individually contact those eligible via email

Please Note

  • When inappropriate or spammy participation is detected, said user will not be able to participate in the launch event as well as from all other future Cloudbric events.
  • Bug submissions from pages/services not part of the target scope will not be considered as valid participation
  • A working proof of concept is mandatory to be eligible for bounty rewards
  • The event may end prematurely when CLBK runs out
  • Disclosure - Cloudbric's Bug Bounty Program does not allow disclosure.You may not release information about vulnerabilities found in this program to the public.
  • Ranking charts are updated real time, however may change with the elimination of spammy contribution
Monthly Ranking
    • {{data.rank}}st
      {{data.email}}
Contribution Ranking
  • 1st
    yh*****@gm***.com
  • 2nd
    ja***********@gm***.com
  • 3rd
    mi*********@gm***.com
Please log-in to view 4th place and under

Bug Bounty Guidelines & Ineligibilities

  • Theoretical vulnerabilities without actual proof of concept
  • Duplicate issues
  • Automated testing using tools
  • Excessive request attempts
  • Email verification deficiencies, expiration of password reset links
  • Cache-control related issues
  • Vulnerabilities only exploitable on out-of-date browsers or platforms
  • Actions pertaining to privacy violations, destruction of data, and interruption or degradation of our services (including Denial of Service), including but not limited to content spoofing, exposure of internal IP addresses or domains, phishing, self-xss
  • Public disclosure of vulnerability

How to Participate

  1. Sign up to
    Cloudbric Labs.

  2. Log in.

  3. Take a look at the renewed
    Labs homepage.

  4. Click on Threat DB
    from the main page or
    navigation bar menu.

  5. For any other questions
    please submit a ticket through
    Contact Us.

  6. Event participation
    status can be viewed
    from the Ranking Chart.

  7. Submit threat data
    from the Contribute page.

  8. Check out what type of threat data
    Threat DB collects from the
    View page.

  1. Sign up to
    Cloudbric Labs.

  2. Log in.

  3. Take a look at the renewed
    Labs homepage.

  4. Click on Threat DB
    from the main page or
    navigation bar menu.

  5. Check out what type of threat data
    Threat DB collects from the
    View page.

  6. Submit threat data
    from the Contribute page.

  7. Event participation
    status can be viewed
    from the Ranking Chart.

  8. For any other questions
    please submit a ticket through
    Contact Us.