SCOPE OF TARGETS

If you have found any security issue in our products or services, we encourage you to notify us.
We are looking forward to working with you to resolve the issue promptly.

Web Services and Applications
IoT Devices

This program targets 360 smart devices. We sincerely invite security experts to join the program.You will be provided with free testing devices and rewards up to $50,000USD.

FREE testing devices are available. To request a device
  • Device
    Request

    To request a free test device, please email us at security@360.cn with your experiences, capabilities or qualifications in IoT security.

  • Request
    Approval

    Your application will be reviewed and if approved, the requested device will be sent out within 2 working days.

  • Vulnerability
    Detection

    We are expecting at least one vulnerability report within the next 3 months since you receive the device. If not, your future request will be affected.

  • Report
    Submission

    When you discover any vulnerability in the device, please submit a report at security@360.cn detailing enough information for us to reproduce the attack.

360 offers direct payments in exchange for reporting certain types of vulnerabilities and exploitation techniques.

This bounty program helps us work with security researchers to help protect customers.

PROCESS & TIMELINE

Mail your report to: security@360.cn

Vulnerability Reporting Agreement

  • Be sure to read all of these terms before sending us any submission. Click here.
  • If you send us a submission for the program, you are agreeing to these terms. If you do not want to agree with these terms, do not send us any submissions or otherwise participate in this program.