Free Fire place a lot of emphasis on our data security and providing a positive and an enjoyable experience to all our players. Teams across security, engineering, legal and operations work together to tackle any new found vulnerability and cheats.
If you a security researcher and found a security vulnerability that allows players to cheat or harm the gaming experience of other users, you may report Security Vulnerability to us.
Good news, Garena partner with Hackerone to manage our bounty program and you're very welcome to sign up. To recognize your efforts and honor your contributions, we offer a monetary bounty for valid and qualified vulnerability reports. Submit your vulnerability report to FFSecurity@garena.com*.
After verifying the vulnerability, an invitation will be sent for our Hackerone program.
We evaluate the vulnerabilities severity by their practical impact. Bounty reward will also be based on the level of severity. The listed classes are not meant to be an exhausted list.
|Class 0: Critical Severity||$4,000 ~ $10,000|
|Class 1: High Severity||$1,000 ~ $4,000|
|Class 2: Medium Severity||$400 ~ $1,000|
|Class 3: Normal Severity||$100 ~ $400|
|Class 4: Low Severity||$50 ~ $100|
Depending on the complexity of the vulnerability, it may take up to 7 - 25 business days to review and respond a valid report.
*Do take note that this email address is only responsible for handling game security issues.
For game bugs, do approach Free Fire customer service.