If you believe you have found a bug we encourage you to let us know right away. We will investigate all legitimate reports and do our best to quickly fix the problem. We pounce on the problem immediately but carefully, figuring out exactly what caused it and how to fix it. Then we test the fix, make sure it doesn't impact any existing functionality, deploy it, and announce the news.
In the hopes of avoiding public scenarios, we've created a "Bounty Reward" award. Here's how you get one:
JordanTBH Technologies will pay a bounty for certain product security bugs, as detailed below. All security bugs must follow the following general criteria to be eligible:
We ask that you be available to provide further information on the bug as needed, and invite you to work together with JordanTBH Technologies engineers in reproducing, diagnosing, and fixing the bug. As part of this process we will provide you full access to participate in our internal discussions about the bug.
Credit(s): Some of the text n this page is from Reddit. :)
† The bounty reward program will begin on the 04TH December 2013 and end it's trial run on the 16TH July 2014.