Cyber security for everyone
Our bug bounty platform is unique in that it is community driven. With a fund that is financed by companies that invest in their own security, but who, by increasing their own security, also want to contribute to protecting Iceland. At the same time, the fund is designed to benefit, for example, charities, start-ups and public institutions with limited resources.
The fund is based on the social responsibility of those organizations and companies that have the budget to finance their own bug bounty platform and show a willingness to help finance a system designed for the community as a whole.
The community fund is designed for those who don't have the financial means, and at the same time is a way to encourage the defenders to report all incidents of security vulnerabilities in our community, no matter who is affected.
Let’s activate expertise
With the community fund, we create an incentive system where the expertise and skills of ethical hackers are activated to benefit the community. Rewards are paid from the fund for security vulnerabilities that are reported to Defend Iceland, at companies or institutions that do not have the funds to pay rewards.
With this, we approach Iceland's cyber security in a holistic way, but Defend Iceland's future vision is that all companies and institutions in Iceland can use the bug bounty platform to increase their cyber security.
Responsible vulnerability disclosure
Responsible vulnerability disclosure is integrated with Defend Iceland’s bug bounty platform and differentiates it from other cyber security solutions. We focus on the digital security of the community as a whole, not just our customers.
Structure of the fund
The community fund is financed on the one hand by Defend Iceland's customers and on the other hand by the community of ethical hackers.
The customer's contribution is based on the paid reward money for security vulnerabilities, but on top of those payments a 10% flat fee is added, which is the customer's contribution to the fund every time they pay for a vulnerability. The community fund therefore grows with each security vulnerability found.
Ethical hackers can also make voluntary contributions to the fund from their own reward money.
The reward money paid out of the fund takes into account its status at any given time and the potential impact of the vulnerabilities on Iceland's digital community.
Found a security vulnerability?
A safer digital community is a collaborative effort. Join the ethical hackers of Defend Iceland and contribute to the fight against cyber crime.
Report a vulnerability
We work through the vulnerabilities and deliver a report with a suggested fix to those who need to fix it.
Join us
Your knowledge and skills can play an important role in strengthening Iceland’s defenses and increasing the resilience of the community.