Immunefi is the premier crypto bug bounty platform for smart contracts and DeFi projects. Immunefi has provided hackers a way to put their skills to legitimate use and has paid out more than $3 Million in bounties to date.
With over $1B in user funds prevented from being stolen or misused, Immunefi’s live roster of available bounties has grown to $31 Million (and counting) worth of bug bounties, waiting to be discovered & claimed.
The Graph Protocol has collaborated with Immunefi to launch the world’s largest bug bounty program in history. The primary agenda is to mitigate the risks of losing user funds, exposing private details, and Sybil attacks. It’s also directed towards preventing incorrect query results by Indexers due to Indexer software anomalies and other associated vulnerabilities. Whitehat hackers get rewarded in accordance with the severity of the detected bug and the intensity of potential damage. This is based on a 5-stage scale outlined in the Immunefi Vulnerability Severity Classification System.
The following is the scale and the associated rewards:
Critical: Freeze contract holdings or empty funds like flash loan attacks, reentrancy (up to $2,500,000)
High: Temporary suspension to transfer funds from token holders’ wallets ($200,000)
Medium: Huge gas consumption and denial of service ($20,000)
Low: Contract doesn’t return the promised returns ($5,000)
The rewards for critical security breaches are capped at 10% of the total economic damages that may result from coding vulnerabilities.
https://medium.com/immunefi/the-graph-joins-immunefi-with-the-worlds-largest-ug-bounty-in-history-2-5-million-d63a466f7485
