Vulnerability Disclosure

As a provider of security software, services, and research, we take security issues very seriously and recognize the importance of privacy and security.

We are committed to addressing and reporting security issues through a coordinated approach designed to drive the greatest protection for our customers. Whether you’re a customer of Hmatix solutions, a software developer, or simply a security enthusiast, you’re an important part of this process.

If you have discovered a vulnerability in our solution, please email security@hmatix.com with the details.

Hmatix requests the reporter keep any communication regarding the vulnerability confidential.

Once we have received a vulnerability report, Hmatix takes the following steps:

  1. Hmatix investigates and verifies the vulnerability.

  2. Hmatix addresses the vulnerability and releases an update or patch to the software. If for some reason this cannot be done quickly or at all, Hmatix will provide information on recommended mitigations.

  3. Hmatix publicly announces the vulnerability in the release notes of the update. Hmatix may also issue additional public announcements, for example via social media, our blog, and media.

  4. Release notes (and blog posts when issued) include a reference to the person/people who reported the vulnerability, unless the reporter(s) would prefer to stay anonymous.