Welcome to FusionFabric.cloud Responsible Disclosure

By submitting a vulnerability to the FusionFabric.cloud Responsible Disclosure Program, you agree to the Terms of Service.
Get Started

Reporting Vulnerabilities

At Finastra, the safety of the data on our systems is at the heart of everything we do. We actively encourage everyone who believes they have found a vulnerability in our systems to report the issue to us in line with the following guidelines. Your report will be submitted to our Responsible Disclosure Program, managed by Synack.


Responsible Disclosure Guidelines

Scope

The following Finastra web services are in scope:



Rules of Engagement

Please read the following rules before reporting a vulnerability:

If you do not follow these Rules of Engagement your actions will be treated as an attack and not a Security Disclosure. We may take action against any attacks, including reporting them to the police.


What to Report


What not to Report

For a full list of program scope please visit the Responsible Disclosure details page.


Terms and Conditions

The following terms and conditions apply and you have to fully comply with those terms at all times.

International Law and Regulations

Your investigation of our IT systems could be regarded as criminal under local or international law. If you act in good faith and in accordance with these Responsible Disclosure Guidelines, we will not report your actions to the authorities, unless required to do so by law.