This page is for security researchers interested in reporting security vulnerabilities.
At Bendigo Bank we are committed to the protection of our customers’ information. Because threats to our corporate environment and customer assets are ever present, we also value the important role the security community plays in helping us mitigate information security risk.
If you have information about possible security vulnerabilities in any Bendigo bank product or service, please submit a report using these guidelines.
What you can do
What to do if you receive a phishing or hoax email or SMS
Please refer to latest scam alerts on the Bendigo Bank website for reporting suspicious SMS or any phishing related scams.
How to report information relating to potential security threats or issues
You can disclose suspected vulnerabilities to the Bendigo Bank Security Team by emailing: vulnerabilitydisclosure@bendigoadelaide.com.au.
Submission format
To assist us in investigating your report, you should include:
- A detailed summary of the vulnerability including the target;
- Reproducible steps and artifacts;
- Screenshot references;
- Contact information.
What's next
Upon submitting your disclosure report, you will receive confirmation that we have received it. We may also contact you if more information is required to assist us in the investigation.
Useful information
Recognition
Rural Bank does not compensate individuals or organisations for identifying potential or confirmed security vulnerabilities. We thank the researchers who have helped keep our customers and communities safe by reporting security vulnerabilities.
Privacy
For more information about how we manage your personal information, please refer to our Privacy Policy.