Found a security flaw?

At HiveStreaming, we take the security of our system very seriously, and protecting our customers’ data are our number one priority. We genuinely value security researchers and others in the security community to assist in keeping our systems secure. Together we can make things better and find ways to solve challenges, and the responsible disclosure of security vulnerabilities helps us ensure the security and privacy of our users. We constantly strive to deliver high-quality services as secure as possible. If you have discovered a security flaw, we encourage you to contact us and would like to hear about it to address it as soon as possible. Together we can accomplish goals through collaboration, communication, and accountability.

How to contact us?

You can start the process by sending an email to our security team and make sure to include the type, impact, description, and location of the vulnerability and a detailed description of the steps required to reproduce the vulnerability. We will do our best to get back to you within 72 hours, with a confirmation that we have received your report, and keep you updated while we process the issue.

Guidelines

Please keep information about any vulnerability you’ve discovered confidential between yourself and HiveStreaming until we have had at least 60 days to review and resolve the issue. It is important to note that the timeframe for us to review and resolve an issue may vary based upon several factors, including the complexity of the vulnerability, the risk that the vulnerability may pose, among others. Please keep in mind to make every effort to avoid privacy violations, degradation of user experience, disruption to production systems, and destruction of data during security testing. Always keep in mind to not engage in social engineering or phishing of our employees. Hive Streaming employees or employees of Hive Streaming partners are not eligible for participation.

Scope

All services, applications, and servers are owned by Hive Streaming

  • *.hivestreaming.com
  • *. hivestreaming.net
  • Hive Streaming Desktop Applications
  • Hive Streaming Web Player

Excluded services;

  • careers.hivestreaming.com
  • support.hivestreaming.com
  • status.hivestreaming.com
  • zendesk[1,2,3,4].hivestreaming.com
  • em[6307,5208,4508].hivestreaming.com
  • *._domainkey.hivestreaming.com

Reward

Each report will be evaluated case by case, and the Hive Streaming Security Team will decide regards to any reward.