Blockchain Security Contacts

This directory is a community-curated resource for contacting security teams. It identifies the best way to contact an organization's security team so that hackers can report vulnerabilities directly to the organizations that can resolve them.

This document is a work in progress. We're happy to accept feedback, questions, or ideas for improvements. File an issue or join us on Slack to talk further.

Recommendations

Refer to disclose.io for vulnerability disclosure program best practices
Don't make researchers agree to terms to report security issues to you
Create a security@ email address that delivers directly to your engineering team

Blockchains

Name	Contact	More info
Arweave	[email protected]
Bitcoin	[email protected]	Security page
Bitcoin Cash
Bitcoin Gold	[email protected]	Disclosure policy
Bitshares	[email protected]
Bytecoin	[email protected]
Cloakcoin	[email protected]
Dash		Bug bounty
Decred	[email protected]
DogeCoin
Edgeware	[email protected]
EOS		Bug bounty
Ethereum	[email protected]	Bug bounty
Ethereum Classic	[email protected]
Horizen	[email protected]	Bug bounty
Hush	[email protected]	Security Page
ICON	[email protected]
IOV	[email protected]
Komodo	[email protected]
Litecoin	[email protected]
Nem	[email protected]
Neo	[email protected]
Monero	Multiple	Bug bounty
Ontology	[email protected]
POA Core	[email protected]	Security page
Ripple	[email protected]	Bug bounty
RSK	[email protected]	Bug bounty
Sia	[email protected]
Steem
Tezos	[email protected]	Bug bounty
Qtum
Quorum	[email protected]
VeChain
xDai Chain	[email protected]	Security page
ZCash	[email protected]	Security page

Decentralized Applications

Name	Deployed Addresses	Contact	More info
0x	External Reference	[email protected]	Bug bounty
1Hive		Keybase Chat	Bug bounty
AAVE		[email protected]
Ampleforth	External Reference	[email protected]
Aragon	External Reference	[email protected]	Bug bounty
Bamboo Relay		[email protected]
Bancor Network		[email protected]
BarterDEX Network		[email protected]
Bloom	External Reference	[email protected]
bZx		[email protected]
C-Layer	External Reference	[email protected]
Commonwealth.im		[email protected]
Compound Finance		[email protected]
Connext		[email protected]
Cozy Finance		[email protected]
Decentraland			Bug bounty
Decentralized Vulnerability Platform		[email protected]
Democracy Earth		[email protected]
Dharma		[email protected]
Erasure / Numerai	External Reference	[email protected]
Ethfinex		[email protected]
Giveth	External Reference
Idle Finance	External Reference	[email protected]
InstaDApp	External Reference	[email protected]
Kleros	External Reference	[email protected]	Bug bounty
Kyber Network		[email protected]
LivePeer	External Reference	[email protected]
Melon		[email protected]
Nahmii		[email protected]
Nexus Mutual		[email protected]
Raiden Network		[email protected]
Reimagined Finance		[email protected]	Disclosure Policy
RenEx		[email protected]
Sablier	External Reference	[email protected]
Sandclock		[email protected]
Set Protocol		[email protected]	Bug bounty
Solidified		[email protected]
Sovryn	External Reference		Bug bounty
Status.im		[email protected]	Bug bounty

Decentralized Exchanges (DEXs)

Name	Deployed Addresses	Contact	More info
AirSwap	Etherscan	[email protected]
DDEX	Etherscan	[email protected]
Enclaves		[email protected]
Leverj	Custodian	[email protected]	leverj.io
Orderbook	Etherscan	[email protected]	Instruction
Synthetix		[email protected]
UniSwap		[email protected]

ERC20 Tokens

Name	Ticker	Mainnet Address	Contact	More info
Aelf	ELF	Etherscan	[email protected]
Aeternity	AE	Etherscan	[email protected]
Aion	AION	Etherscan	[email protected]
AirSwap	AST	Etherscan	[email protected]	Bug bounty
Ampleforth	AMPL	Etherscan	[email protected]
Aragon	ANT	Etherscan	[email protected]	Bug bounty
Augur	REP	Etherscan	[email protected]	Bug bounty
Aurora	AOA	Etherscan	[email protected]
Bancor	BNT	Etherscan	[email protected]
Banker Token	BNK	Etherscan	[email protected]
Basic Attention Token	BAT		[email protected]	Bug bounty
Bibox Token	BIX	Etherscan
Binance Coin	BNB	Etherscan	[email protected]	Bug Bounty
Bloom	BLT	Etherscan	[email protected]
Brickblock	BBK	Etherscan	[email protected]
Bytom	BTM	Etherscan	[email protected]
ChainLink	LINK	Etherscan	[email protected]
CyberMiles	CMT	Etherscan	[email protected]
Dai	DAI	Etherscan	[email protected]
Decentraland	MANA	Etherscan	[email protected]
DentaCoin	DCN	Etherscan	[email protected]
DigixDAO	DGD
Dropil	DROP	Etherscan	[email protected]
EToken Assets		List of Assets	[email protected]	Many tokens are issued with EToken
Dynamic Trading Rights	DTR	Etherscan	[email protected]
FEE Token	FEE	Etherscan	[email protected]
FunFair	FUN	Etherscan	[email protected]
Gnosis	GNO	Etherscan	[email protected]
Golem	GNT	Etherscan	[email protected]
Holo	HOT	Etherscan	[email protected]
Hubiits	HBT	Etherscan	[email protected]
IOST	IOST	Etherscan	[email protected]
Jigstack	STAK	Etherscan	[email protected]
Kin	KIN	Etherscan
KuCoin Shares	KCS	Etherscan	[email protected]
Kyber Network	KNC	Etherscan	[email protected]
Ledgerium	LGUM	Etherscan	[email protected]
Leverj	LEV	Etherscan	[email protected]
Loopring	LRC	Etherscan	[email protected]	Bug bounty
Loom Network	LOOM	Etherscan	[email protected]
Mainframe	MFT	Etherscan	[email protected]
Maker	MKR	Etherscan
Melon Token	MLN		[email protected]	Bug bounty
Monaco	MCO	Etherscan	[email protected]
Mithril	MITH	Etherscan
Mixin	XIN	Etherscan	[email protected]
MUI Token	MUI	Etherscan	[email protected]
Nahmii	NII	Etherscan	[email protected]
Nectar	NEC	Etherscan	[email protected]
NuCypher	NU		[email protected]
Nuls	NULS	Etherscan	[email protected]
Numeraire	NMR	Etherscan	[email protected]
ODEM	ODEM	Etherscan	[email protected]
OmiseGO	OMG	Etherscan
Orderbook BTC	OBTC	Etherscan	[email protected]	Instructions
Orderbook USD	OUSD	Etherscan	[email protected]	Instructions
Paypex	PAYX	Etherscan	[email protected]
POA20 Bridge	POA20	Etherscan	[email protected]	Security page
PolySwarm	NCT	Etherscan	[email protected]	Security page
Polymath	POLY	Etherscan	[email protected]	Bug bounty
Populous	PPT	Etherscan	[email protected]
Power Ledger	POWR	Etherscan	[email protected]
Pundi X	NPXS	Etherscan	[email protected]
QASH	QASH	Etherscan
Quantstamp	QSP	Etherscan	[email protected]	Bug bounty
RChain	RHOC	Etherscan
Ren	REN	Etherscan
Sai	SAI	Etherscan
Salt	SALT	Etherscan	[email protected]
SelfKey	KEY	Etherscan	[email protected]
SpankChain	SPANK	Etherscan	[email protected]
Synthetix	SNX	Proxy Underlying	[email protected]
Synths (all flavors)	sUSD, sETH, etc	Proxy sUSD	[email protected]
Status	SNT	Etherscan	[email protected]
Storj	STORJ	Etherscan	[email protected]
Tellor	TRB	Etherscan	[email protected]
TenX	PAY	Etherscan	[email protected]
Tether	USDT	Etherscan	[email protected] , [email protected]
TrueUSD	TUSD	Etherscan	[email protected]
USDCoin	USDC	Etherscan	[email protected]
Veritaseum	VERI	Etherscan
Waltonchain	WTC	Etherscan	[email protected]
WAX	WAX	Etherscan	[email protected]
Zilliqa	ZIL	Etherscan	[email protected]

ERC721 Tokens

Name	Mainnet Address	Contact	More Info
CryptoKitties (CK)	Etherscan
Gods Unchained (GODS)	Etherscan

Exchanges

Name	Contact	More Info
A1 Exchange	[email protected]
BCEX	[email protected], [email protected]
Bankera Exchange	[email protected]
Bibox	[email protected]
Binance	[email protected]	Bug Bounty
Bitaccess	[email protected]	Bug bounty
Bittrex	[email protected]
Bit-Z	[email protected]
Bitfinex	[email protected]
bitFlyer	[email protected]
Bitforex	[email protected], [email protected]
Bitso	[email protected]
Bitstamp	[email protected]
BitMEX	[email protected]	Security page
Blockchain	[email protected]	Bug bounty
Coinbase		Bug bounty
Coinbene	[email protected]
Coinbit	[email protected]
CoinExchange	[email protected]
Coinfinity	[email protected] (PGP)	Security page
Coinify	[email protected]
Coinsquare	[email protected]
Coinsuper	[email protected]
CoinSwitch	[email protected]
CryptoFacilities	[email protected]
Digifinex	[email protected]
DOBI	[email protected]
Ethfinex	[email protected]
Exmo	[email protected]
EXX	[email protected]
Faa.st	[email protected]	Bug bounty
Gemini Trust	[email protected]	Security page
HitBTC	[email protected], [email protected]
Huobi Global	[email protected]	Security page
ICONOMI	[email protected]
IDAX	[email protected]
Kraken	[email protected]	Bug Bounty
Leverj	[email protected]	leverj.io
OKEx	[email protected], [email protected]
Orderbook	[email protected]	Instructions
Poloniex	[email protected]
qTrade.io	[email protected]
QuadrigaCX	[email protected]
SFOX	[email protected]	Bug Bounty
ShapeShift	[email protected]	Disclosure Program
SpectroCoin	[email protected]	Bug bounty
Trade.io	[email protected]
Tokens	[email protected]	Security page
ZBG	[email protected]

Infrastructure

Name	Contact	More Info
Ambisafe SaaS	[email protected]
Etherscan
GasTracker	[email protected]
Infura	[email protected]
PegaSys	[email protected]	For Pantheon, Orion, and Artemis: Ethereum 1.0/2.0/EEA clients
SafeBlocks Firewall	[email protected]
Upvest	[email protected]
QuikNode	[email protected]
Vyper	[email protected]	Security Policy

Wallets

Name	Contact	More info
Ambisafe CryptoWallet	[email protected]
Arkane	[email protected]
Blockchain	[email protected]	Bug bounty
BitGo	[email protected]
Emerald Wallet	[email protected]
Groundhog	[email protected]
KeepKey	[email protected]	Disclosure Program
Ledger	[email protected]	Bug bounty
MetaMask	[email protected]	Bug bounty
MyCrypto	[email protected]	Disclosure Program
MyEtherWallet	[email protected]	Bug bounty
Parity	[email protected]	Bug bounty
SelfKey	[email protected]
SovereignWallet	[email protected]
Trustwallet	[email protected]
Unchained Capital	[email protected]	Bug Bounty
Upvest	[email protected]

crytic/blockchain-security-contacts

crytic

Reviews

Repository Details