About the LINE Security Bug Bounty Program

Hello, my name is Lee Myoung Jae (MJ) and I’m in charge of security at LINE. In this post I’m going to talk about the LINE Security Bug Bounty Program and the results of the program in 2016. The LINE Security Bug Bounty Program is an ongoing program to make the LINE app more secure for our users by letting external engineers submit bug (vulnerability) reports which we would then immediately fix.

We first conducted a trial run of the program called the LINE Bug Bounty Program from August 24 to September 23 in 2015. Based on our experience from that trial, we made various changes to create an improved bug bounty program for 2016. And on June 2, 2016, we launched the new and improved LINE Security Bug Bounty Program.

For more information about the LINE Bug Bounty Program, see our previous blog posts: “Introducing the LINE Bug Bounty Program” and “Results From the LINE Bug Bounty”

LINE Security Bug Bounty Program website: https://bugbounty.linecorp.com/

Preparing the Bug Bounty Program

Hello. I am MJ, a LINE security engineer.

In this post I would like to share the results of the 2015 LINE Bug Bounty (August 24-September 23). As our first ever bug bounty program, we are very pleased with how well the program came together.

The core objective of the program was to discover and fix potential vulnerabilities in our services so that our users can enjoy them safely. Several departments lent us a hand in preparing the program and we could not have done it without them.