This page is for security researchers interested in reporting security vulnerabilities.
At Bendigo Bank we are committed to the protection of our customers’ information. Because threats to our corporate environment and customer assets are ever present, we also value the important role the security community plays in helping us mitigate information security risk.
If you have information about possible security vulnerabilities in any Bendigo bank product or service, please submit a report using these guidelines.
What you can do
How to report information relating to potential security threats or issues
You can disclose suspected vulnerabilities to the Bendigo Bank Security Team by emailing: email@example.com.
To assist us in investigating your report, you should include:
- A detailed summary of the vulnerability including the target;
- Reproducible steps and artifacts;
- Screenshot references;
- Contact information.
Upon submitting your disclosure report, you will receive confirmation that we have received it. We may also contact you if more information is required to assist us in the investigation.
Bendigo Bank does not compensate individuals or organisations for identifying potential or confirmed security vulnerabilities. We thank the researchers who have helped keep our customers and communities safe by reporting security vulnerabilities.