Security program underscores Echobox’s dedication to protecting its publisher clients from malicious actors

London, UK — 10 November 2022: Echobox, the leading publishing automation solution, has made its bug bounty program public for the first time with YesWeHack, the global bug bounty and Vulnerability Disclosure Policy (VDP) platform. 

By partnering with YesWeHack to run its bounty programs, Echobox gains access to a global community of 45,000 skilled ethical hackers who will scrutinize and test the Echobox platform in an attempt to identify security vulnerabilities. These ethical hackers, or “hunters,” can earn bounties of up to €6,000 for the most serious vulnerabilities identified. Echobox will proactively resolve any vulnerabilities found, ensuring its platform remains highly secure and preventing any flaws that, left ignored, may have resulted in future security breaches.

Echobox’s participation in bug bounty programs makes it unique amongst social media automation platforms. The only publishing automation solution to run a public bug bounty program of this nature, Echobox provides its publisher clients with a heightened level of cybersecurity – a critical requirement for many of the world’s largest, most trusted publishers and media groups who post news to millions on social media. Reinforcing the security of the Echobox platform gives publishers peace of mind that malicious actors cannot interfere with their communications on social media.

The public bug bounty program, as well as previous private programs, underscores Echobox’s fundamental commitment to security for its clients, complementing initiatives including comprehensive cybersecurity training for all employees and stringent internal anti-phishing measures, amongst others. 

“For news publishers in particular, a potentially compromised social media account carries extremely high risk,” said Marc Fletcher, CTO of Echobox. “Protecting real news is an absolute priority for Echobox, and taking our private bug bounty program public is one of many investments we’ve made to ensure the robust security of our platform. Bug bounty programs in particular are highly effective at preventing breaches and ensuring a platform is impenetrable across all aspects of cybersecurity.”

“Bug bounties are a vital part of every organisation’s security toolbox,” added Sam Lowe, Account Executive at YesWeHack. “By moving towards a public program, Echobox continues to show its commitment to safeguarding the proprietary data of publishers it works with, and provides them with reassurance of the best in class security at a time when the digital landscape is rife with vulnerabilities and threats.” 

Details of Echobox’s bug bounty program are available at 


For all media inquiries, please contact

About Echobox

Echobox is an AI-powered publishing solution, chosen by more than 1,500 of the world’s leading publishers, including Newsweek, The Times, The Telegraph, the Guardian, CNBC, Scientific American, Le Monde and Hello!. Publishers share more than 40 million stories and reach billions of people with Echobox each year. Echobox’s research and insights have been written about by many of the world’s leading publications including the BBC, CNN, Bloomberg, Techcrunch and Forbes. Read more at and follow us on Facebook, Twitter and LinkedIn.


About YesWeHack

Founded in 2015, YesWeHack is a Global Bug Bounty & VDP Platform. YesWeHack offers companies an innovative approach to cybersecurity with Bug Bounty, connecting more than 45,000 ethical hackers across 170 countries with organisations to secure their exposed scopes and report vulnerabilities in their websites, mobile apps, infrastructure and connected devices. YesWeHack runs private programs and public programs for hundreds of organisations worldwide in compliance with the strictest European regulations. In addition to the Bug Bounty platform, YesWeHack also offers support in creating a Vulnerability Disclosure Policy (VDP), a Pentest Management Platform, a learning platform for ethical hackers called Dojo and a training platform, YesWeHackEDU.