Please contact us if you have found a security vulnerability.
It is our mission to keep our users safe online by providing secure products to protect them and maintain their privacy. We constantly monitor and test our systems but are aware that as a global software company, we will always be a popular target for cybercriminals. We run a responsible disclosure program that offers a reward for anyone finding and reporting to us a vulnerability in our products, website, or system. We take all reports regarding a security issue seriously and will work with you to thoroughly analyze your findings.
If you find any indications of a vulnerability in any of our systems, we kindly ask you to inform us as soon as possible and not to disclose externally until you have done so. This is to ensure that we protect our users by preventing a malicious actor from taking advantage of the situation.
Please follow these steps to make a report:
Once you report a vulnerability to us, we will respond within two business days to work with you on evaluating the issue and determining next steps.
In gratitude, we will happily provide Avast swag or other token of our appreciation, with the value depending on the severity of the vulnerability reported and the quality of your report.