Responsible Disclosure
Commitment to Security
At KOBIL, security is not just a priority; it's our fundamental commitment. As a leading provider of secure digital identity and cybersecurity solutions, we deeply value the trust our customers place in us. We continuously strive to uphold the highest security standards across all our products and services.
We highly appreciate the efforts of ethical security researchers and the wider security community who assist us in maintaining these standards by responsibly disclosing potential vulnerabilities.
Reporting Security Vulnerabilities
If you discover a security vulnerability in any of our products, services, or systems, we encourage you to inform us promptly and responsibly, enabling us to address the issue efficiently and minimize potential harm.
Please report your findings directly to our security team using the following contact details:
Information to Include
To help us efficiently investigate and remediate the vulnerability, we ask you to provide:
A clear description of the vulnerability
Steps to reproduce the issue
Potential impact of the vulnerability
Any additional relevant information or documentation
Our Response
Upon receipt of your report, we commit to:
Acknowledge your submission within five business days
Investigate your reported vulnerability thoroughly
Provide regular updates on the progress of our investigation
Inform you once the vulnerability has been addressed
Anonymity
If you prefer to submit vulnerabilities anonymously due to privacy or legal concerns, we fully understand and support your decision. Anonymous submissions can be made securely, and we ensure that all reports are handled discreetly and professionally.
Security.txt
For automated discovery and compliance with industry standards (RFC 9116), our security disclosure information is also available via:
https://kobil.com/.well-known/security.txtWe thank you sincerely for your commitment to cybersecurity and for helping KOBIL maintain the highest standards of security.