Mindboost Program

bug bounty starting 11.11.25

Author

Oliver Maicher
November 11, 2025

mindboost: new bug bounty program is live

check how it works if you鈥檙e curious, or start hacking straight away (responsibly).
important: follow the rules. no ddos, no social engineering, no hitting anything outside scope.

Check out how works here: https://bugs.olivermaicher.eu/

report everything directly with me.

we鈥檝e also got some results from the beroomie bug bounty:
馃帀 Parth Narula and Vaibhav Jain reported Task Hijacking
馃帀 Rijul Jenjen reported Root detection missing

Treat client-side root signals as advisory only. Require and verify device attestation server-side (Play Integrity / SafetyNet or equivalent). Move security-critical checks and authorization to server-side; require attestation for sensitive operations. Log and monitor failed/absent attestations and step-up or block high-risk flows.

Rijul Jenjen

if you鈥檝e got findings, send them over.
and yeah, please share with your friends.

greetings from sevilla, i鈥檝e reached here after visiting friends in: barcelona 路 cartagena 路 malaga 路 cadiz