Reporting Security Vulnerabilities
You are welcome to report any vulnerability online via OKEx Security Response Center. Please do not disclose the vulnerability until it is resolved. We promise every report will be evaluated, followed up, and responded by a dedicated team. All white-hats who contribute to accepted reports will be given rewards.
See detailed rules
Risk Levels and Rewards
Loopholes in core business systems that endanger the security of users' assets and data.
Unauthorized operation, serious SQL injection, loopholes that could cause large-scale impact to users, source code leakage, etc.
Loopholes that could affect some users, alteration of user data, etc.
Regular CSRF, SMS bombs, normal data leakage, etc.
Introducing OKEx Security Response Center
OKEx Security Response Center wishes to create a more secure and stable digital asset exchange together with all users and white-hats. We welcome everyone to report any vulnerability found on OKEx website or app,
helping us improve the security of our products and businesses. Our dedicated team will take immediate actions to follow up and inform you the results in time.
We will also offer you digital asset rewards according to the risk level of your reported vulnerabilities as a gesture of appreciation.