Immunefi bans TrustSec in bug bounty dispute.

Web3 bug bounty platform Immunefi has issued a 90-day ban on white hat security firm Trust Security. The decision was made after the latter sued Immunefi for unfairly denying bug bounty payments after finding a critical bug that could have led to the theft of funds.

In the year On November 12, the Trust Security at X charity team identified a critical money theft vulnerability on the mainnet of an unknown project fork.

The vulnerability verification is shared with Immunefi, which acts as an intermediary between white hats and projects to ensure that bonus payments are made to trusted bug tags.

Table of Contents

Toggle

A critical error is rejected as “out of range”.

However, the project says Trust Security has found an out-of-bounds bug, effectively disqualifying white hats from receiving prize money.

According to the Trust, Immunefi wrongly sided with the project's “nonsensical argument” and offered a “small goodwill bonus” instead of the full reward for identifying critical bugs.

Immunefi threatens a permanent ban on TrustSec.

Immunefi has issued a 90-day suspension against the Trust's claims of unfair payments for “misrepresenting the issues at hand”. The bug bounty forum threatened to permanently ban Trustee if he repeated the breach.

Immunefi stands firm in supporting the project:

“In this case we agreed to the project because according to our standard rules the case was completely useless. The project was too generous to give any bonus.”

But the Trust declined to accept the goodwill offer as it would legally prevent them from publishing the list without permission, saying: “We'd rather expose the fraud and warn the hackers than put them in our pockets.”

Related: Near critical bug that can crash every node on the network

In addition, the trust urged for greater clarity and transparency:

“The shady, ultra-secretive behavior we see from projects and some bounty platforms are in direct conflict with Web3's ethos and the white hat community, so we're coming out publicly.”

Some members of the crypto community have questioned Eminef's decision on X to impose a ban on trust instead of engaging in constructive dialogue.

Immunefi did not respond to Cointelegraph's request for comment.

In October, EvmosBlockchainn paid a $150,000 reward to a security researcher who discovered a critical bug by reading Cosmos Network documents.

According to Sperbit security researcher jayjonah.eth, the critical bug could have stopped the Evmos blockchain and decentralized applications built on it.

Magazine: Real Life Agriculture: How Tokenization Is Changing Lives in Africa.