Responsible disclosure

Security disclosure policy for CyberBit Solutions.

CyberBit welcomes good-faith reports about security concerns on the public website. This policy keeps the scope clear and helps protect customers, visitors, and researchers.

In scope

Reports about the CyberBit Solutions public website and public web assets.
Clear reproduction steps, affected URL, browser details, and screenshots when useful.
Good-faith reporting that avoids harm, disruption, and access to data that is not yours.

Out of scope

Testing systems, accounts, vendors, customers, or infrastructure outside the public website without written permission.
Destructive testing, denial-of-service testing, spam, or actions that degrade service availability.
Credential attacks, password guessing, credential stuffing, phishing, social engineering, or physical attacks.
Data exfiltration, attempts to access private data, or public disclosure before CyberBit has reviewed the report.

How to report

Send concise details to the security inbox.

Include the affected URL, what you observed, steps to reproduce, and any evidence that helps CyberBit validate the issue safely. Do not include passwords, private credentials, or data that is not yours.

CyberBit will make a good-faith effort to acknowledge valid reports and coordinate a reasonable next step.

Security contact

security@cyberbitsolutions.com View security.txt