Vulnerability Disclosure Program

We are committed to ensuring the security of our users and systems. Our Vulnerability Disclosure Program encourages security researchers to responsibly report vulnerabilities in our services.

About Our VDP

At cyberm.ca, we value the contributions of the security community in helping us maintain a secure environment. This program outlines how to report security vulnerabilities for our domains and services.

Scope

This VDP applies to all services and subdomains under:

  • *.cyberm.ca

Reporting a Vulnerability

If you discover a potential security vulnerability, please report it to us via email at: [email protected]

Please include the following details in your report:

  1. A detailed description of the vulnerability.
  2. Steps to reproduce the issue.
  3. The affected domain or service (e.g., specific subdomain of *.cyberm.ca).
  4. Your contact information for follow-up.

Guidelines

To ensure responsible disclosure, please adhere to the following guidelines:

  • Do not exploit vulnerabilities beyond what is necessary to demonstrate the issue.
  • Do not publicly disclose vulnerabilities without our consent.
  • Do not access or modify user data without permission.
  • Follow all applicable laws and regulations.

Our Commitment

We will:

  • Acknowledge receipt of your report within 3 business days.
  • Work with you to validate and address the vulnerability.
  • Keep you informed about the resolution process.

While we do not currently offer monetary rewards, we may recognize contributors in a public Hall of Fame (with your consent) for significant findings.

Contact

For any questions about this program, please reach out to [email protected] .