Olivia
Online
Ertugrul
@ertugrulphp
Bug Bounty Hunter, 23, [email protected],🇹🇷
Joined September 2016
440 Following
1.6K Followers
389 Posts
@joaxcar Congrats Johan!!
@ProofOfBug @FloeLabs @AlexQuellsIt The same thing happened to me. They fixed the vuln after closing my report with a single disrespectful and unprofessional type. This is so funnyyyy
Who to follow
Valeriy
@Krevetk0Valeriy
Security enthusiast, bug bounty hunter at @Hacker0x01 and @Bugcrowd
https://t.co/RjYvPJaXTW
https://t.co/dkUfA2vywe
Sam (caffeine) 
@caffeinedoom
breaking/building
- https://t.co/4GCnaJGBtU
- https://t.co/cR9wBZB2iS
Deepak bug_vs_me
@bug_vs_me
security researcher | Bug Bounty hunter
The same kind of situation applies web2 as well on @injective. I found a valid issue, and the team actually fixed it. But after fixing it, they closed my report as “out of scope”
According to @immunefi, if a reported vulnerability is fixed, the researcher should be rewarded+
I Saved Injective's $500M. They Pay Me $50K.
I like hunting bugs on @immunefi . I'm decent at it.
- #1 — Attackathon | Stacks
- #2 — Attackathon | Stacks II
- #1 — Attackathon | XRPL Lending Protocol
- 1 Critical and 1 High from bug bounties (not counting this one)
Life was good. Then I found a Critical vulnerability in @injective .
This vulnerability allowed any user to directly drain any account on the chain. No special permissions needed. Over $500M in on-chain assets were at risk.
I reported it through Immunefi. The next day, a mainnet upgrade to fix the bug went to governance vote. The Injective team clearly understood the severity.
Then — silence. For 3 months. No follow up. No technical discussion. Nothing.
A few days ago, they notified me of their decision: $50K. The maximum payout for a Critical vulnerability in their bug bounty program is $500K. I disputed it. Silence again. No explanation for the reduced payout. No explanation for the 3 month ghost. No conversation at all. To be clear: the $50K has not been paid either.
I've seen others share bad experiences with bug bounty payouts recently. I never thought it would happen to me. I can't force them to do the right thing. But I won't let this be forgotten.
I will dedicate 10% of all my future bug bounty earnings to making sure this story stays visible — until Injective pays what I deserve.
Full Technical Report: https://t.co/lki2tL9bxw
However, my report has been marked as “closed” for a long time, and the @immunefi mediation team still hasn’t responded.
Honestly, this is really frustrating.
@al_f4lc0n @immunefi They fix the vulnerability then close the report by saying "Out of scope”
This happened to me recently.
Clearly scam👍🏻
The company has over 10m users and the annual premium plan is $80
"Reports that do not relate to legitimate data privacy or security concerns may be accepted as Informational, but will not be rewarded"
Still alive..
#BugBounty
Introducing samoscout - It combines 53+ native passive sources (more than subfinder, oneforall) with optional active enumeration. It runs subdomain level discovery and even uses a built-in LLM to predict new, undiscovered subdomains.
#recon #bugbounty #cybersecurity #opensource
CVSS > Bugcrowd Vulnerability Rating Taxonomy
#bugbounty
He's been on fire lately.
@ertugrulphp just secured a $5,001 critical web/app bug bounty yesterday.
It's his fifth critical so far.
Keep it up!
Last Seen Users on Sotwe
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers