A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
# Contact for misuse of Deutsche Telekom AG services (Abuse) Contact: abuse@telekom.de Website: https://www.telekom.com/en/company/data-privacy-and-security/governance-security/abuse # Contact for Deutsche Telekom AG related Security Issues (Incident Response) Contact: cert@telekom.de Website: https://www.telekom.com/en/company/data-privacy-and-security/news/rfc-2350-deutsche-telekom-cert-358280 # Contact for coordinated vulnerability disclosure (Bug Bounty) Contact: bugbounty@t-mobile.cz Policy: https://www.telekom.com/bugbounty Explo Tool: https://github.com/dtag-dev-sec/explo # Deutsche Telekom AG security acknowledgments page (Hall of fame) Acknowledgments: https://www.telekom.com/en/company/data-privacy-and-security/news/acknowledgements-358300 Expires: 2024-12-31T22:59:00.000Z Preferred-Languages: de, en Canonical: https://www.telekom.com/.well-known/security.txt Hiring: https://www.telekom.com/en/careers/work-in-action/it-security
This policy crawled by Onyphe on the 2024-04-30 is sorted as securitytxt.
FireBounty © 2015-2024