Responsible Hall of Fame
BAMKO proudly recognizes the outstanding contributions of ethical hackers and security researchers who have made our digital ecosystem safer in 2025:
| Name | Vulnerability | Date | Recognition |
|---|---|---|---|
| Mohit Negi | IDOR | 11 Mar 2025 | Hall of Fame |
Responsible Disclosure Policy
BAMKO is committed to safeguarding its digital platforms.
We invite the global security community to report vulnerabilities responsibly and help us build a safer future.
We invite the global security community to report vulnerabilities responsibly and help us build a safer future.
Scope
In-scope:- Websites and web applications
- APIs and web services
- Cloud infrastructure and deployments
- Third-party services not owned by BAMKO
- Social engineering or physical security attacks
- Denial of Service (DoS), brute force, or phishing
- Non-sensitive public files or basic SSL/TLS issues
BAMKO reserves the right to accept or reject any disclosure at its discretion.
Safe Harbor
- Avoid privacy violations and service disruptions
- Limit testing to essential verification steps
- Maintain confidentiality until resolution
- Do not exploit beyond necessity
We support ethical security research and will not pursue legal action when guidelines are followed in good faith.
Recognition
Researchers may request a Hall of Fame listing and a formal letter of appreciation upon valid disclosure review.
- Hall of Fame — Public recognition on this page
- Letter — Official appreciation letter
- Amount — Incase of Critical or High Severity Vulnerability, Upto 1000 USD Reward.
Reporting Process
Email srastogi@bamko.net (Satyam Rastogi)
with subject line:
"Vulnerability Report: [Brief Description]"
with subject line:
"Vulnerability Report: [Brief Description]"
- Vulnerability description
- Reproduction steps
- Impact analysis
- Testing timeline
- Proof-of-concept or screenshots
We will acknowledge your report within 3 business days and coordinate resolution.