A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA512



Contact: mailto:thomas.deutschmann@verivox.com

Contact: mailto:itsecurity@verivox.com

Expires: 2025-12-31T13:00:00.000Z

Encryption: https://keys.openpgp.org/vks/v1/by-fingerprint/15B4233CBB477D1F1F5DB7AF050ABE13B1B299C9

Preferred-Languages: de, en

Canonical: https://www.verivox.de/.well-known/security.txt

Hiring: https://karriere.verivox.de/

-----BEGIN PGP SIGNATURE-----



iQKTBAEBCgB9FiEEFbQjPLtHfR8fXbevBQq+E7GymckFAmb72ERfFIAAAAAALgAo

aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDE1

QjQyMzNDQkI0NzdEMUYxRjVEQjdBRjA1MEFCRTEzQjFCMjk5QzkACgkQBQq+E7Gy

mcnNDg//ZFZlpbUcTgZ2Z4u48zd8EQhCSef57evAiDepIm/az+Debdpmct1HJ7co

f+P0MToygHmO5OBnYbXFWG+QzDL3x2Ny6Wu751wlnEqiCqgyVIXXFlDAcBYtCZD9

oi6Uc0Q/rKyBWqfyW6Qa6ipMeyRf4P0hL6bz+ofqOC6Q7dRMfOTAEZq9zZULgzXA

cXBQG++MjjOMQv4y1Gno8an60ln2Mkze/AHXCsaj5rk1YhdOf/bK+YTx+yfliBDY

JPEvXXgwmCWgFFAhcZlg++z+9qwrDunG8kdFCysjLTpjoOhq9iL5+yOoZbqm1FI+

0uAbbFQpFfE6eVgZs+sWVyNxVTPRUfRlaYbgIhkSfk90irCFNIvjPDkEPD/MwwCn

/jyBHIdL9JxnSKIGCvFJS0LKx6MxnYagg1osgM8+GXc90dDQRmNOKIq9Lyuqtw3T

v8QQYPvEkfSOQGrTZZRmKQPQgQ5fIkDfMC30h55D1VUbp+CzpfOqP8hq7yiPb0QL

JxNfOC3820g4VXT6JLf/cHtSMpdeeppAREXtRd/nprxnIqSGC9X5A7TgzteoXJ0X

rB5k3ocMdhEhvaS9SSgW5TEaR/t86gIhqf0nALaXmc8THYXTBXy2hRNCVPS86nCU

pCnfpN/u3MhSFjacjfDHKpMNHHhHXq9UkOgY4Xo7VKKo/fPX+NM=

=qwVp

-----END PGP SIGNATURE-----