Vulnerability Disclosure Program (VDP)

VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.

thomsonreuters-public

HackerOneView on HackerOne

RawAI Enhanced

In Scope

Out of Scope

In-Scope Assets (2)

Asset	Category	Bounty	Quick Links
*.reuters.com	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.thomsonreuters.com	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa

Scope Changes (6)

Feb 25, 2026

Change	Asset	Category	Scope	Time
Added	*.thomsonreuters.com	WILDCARD	In Scope	19:11
Added	*.reuters.com	WILDCARD	In Scope	19:11

Feb 22, 2026

Change	Asset	Category	Scope	Time
Added	*.thomsonreuters.com	WILDCARD	In Scope	00:42
Added	*.reuters.com	WILDCARD	In Scope	00:42

Feb 21, 2026

Change	Asset	Category	Scope	Time
Added	*.thomsonreuters.com	WILDCARD	In Scope	19:12
Added	*.reuters.com	WILDCARD	In Scope	19:12