Please do the following:
Submit information about vulnerabilities you know about LeeCyber services and resources using the form below.

We ask you:

• Report the vulnerability as soon as possible to minimize the risk of it being exploited by attackers.
• Report the vulnerability in a way that ensures the confidentiality of your message and avoids leaking information about the vulnerability.
• Provide enough information to reproduce the problem. Typically, the IP address or URL of a resource and a description of the vulnerability are sufficient; however, complex vulnerabilities may require additional information.
• Do not disclose information about the vulnerability to third parties until it is resolved.
• Do not create your own backdoor in the information system in order to demonstrate the vulnerability, as this can cause additional damage and create unnecessary security risks.
• Do not use the vulnerability to a greater extent than is necessary to confirm its existence.
• Do not make changes to the system; do not copy, modify or delete data in the system.
• Do not use brute-force attacks, physical security attacks, DDoS attacks, social engineering, spam, or third-party applications to gain access to the system.

We promise you:

• Provide a response to your vulnerability report within 5 business days, with our assessment of the information received and an expected decision date.
• Take no legal action against you if you have followed the instructions above.
• Do not share your personal information with third parties without your consent, except when necessary to comply with statutory obligations. (You may also send a message under a pseudonym or anonymously.)
• To keep you informed of the solution to the problem.
• Tell the public that you were the one who discovered the vulnerability (unless you want to hide your data).

We will make every effort to resolve any problem as quickly as possible, and we would like to play an active role in publishing the final information about the problem once it is resolved