Grab celebrates the 10th anniversary of its bug bounty program in partnership with HackerOne, reflecting on a decade of collaborative security research.
- •The program grew from 23 initial researchers to over 850 active researchers drawn from HackerOne's community of 2 million+ cybersecurity professionals.
- •Scope expanded in 2023-2024 to include financial services in Indonesia and AI systems, with a dedicated bounty table added for mobile-specific vulnerabilities.
- •Grab participated in major live hacking events including ThreatCon 2023 in Nepal and DEFCON 32's Live Recon Village 2024 in Las Vegas to recruit diverse talent.
- •Three exclusive anniversary campaigns with HackerOne's regional clubs in Germany, Morocco, and India generated 461 submissions and broadened international researcher engagement.
- •Future challenges identified include emerging AI threats and novel cryptographic approaches in a quantum-powered world.
Grab Tech