MyTonWallet IconMyTonWallet

MyTonWallet Air Security Bounty Program

MyTonWallet

MyTonWallet Air Security Bounty Program

For ethic hackers & security researchers.
Prize fund: Up to $50,000
Deadline: 1 August 2025 at 14:00 CET

1. The Task

We're inviting security researchers to audit MyTonWallet Air—our new native app for iOS and Android.

Your mission: find and responsibly disclose security vulnerabilities that could compromise user assets, privacy, or overall security through code analysis.

This is a public security bounty program focused on identifying critical, high-impact issues before full release.

How to Access the Code?

iOS and Android source code for MyTonWallet Air is available here.

2. What Counts as a Valid Vulnerability?

We're specifically interested in serious vulnerabilities such as:

  • Unauthorized access to wallets or private data
  • Bypassing authentication or authorization flows
  • Transaction forgery or signing without user consent
  • Cryptographic failures
  • Anything leading to token theft or DoS

Minor UI glitches, layout issues, typos, performance lags, or non-security-related behavior should be submitted via the QA Contest.

3. Submission Guidelines

Please include in your report:

  • Clear description of the vulnerability
  • Code location and affected components
  • Clear reproduction steps or proof‑of‑concept
  • Potential impact
  • Screenshots or other content if applicable

Submit your reports directly to our team for all security disclosures.

4. Evaluation Criteria

Our team will assess each submission based on:

  • Severity and potential impact
  • Reproducibility and clarity of reporting
  • Quality of documentation or proof‑of‑concept
  • Responsible disclosure and ethical conduct

Only valid, original, and verifiable submissions will be considered for rewards.

5. Rewards & Contact

Rewards will be distributed based on the severity and quantity of vulnerabilities found.

If multiple participants discover the same vulnerability, the reward will be distributed as follows: 50% to the first reporter, and the remaining 50% shared equally among all reporters of the same issue.

Send your reports directly to our team—top submissions will be rewarded accordingly.

Learn more about MyTonWallet

🦄 About MyTonWallet

MyTonWallet is a secure and powerful multichain wallet for TON, TRON, Solana, Ethereum, Base, and other major networks.

Learn more: https://mytonwallet.io.

About MyTonWallet

Useful links: 📖 Help Center • 💬 24/7 Customer Support

Socials: 🇺🇸 Telegram • 🇷🇺 Telegram𝕏 (Twitter)

💎 Get MyTonWallet