Mozilla participates in the HackerOne bug bounty program. The program is designed to encourage security research into Mozilla's websites and services and to reward those who find unique and original security bugs in Mozilla's products and web services.

Read Mozilla's bug bounty policy, including submission guidelines and program rules on HackerOne's site.

Bug bounty hunters: Please submit security bug reports via the HackerOne platform.

Everyone else: Please email security@mozilla.com with the details.