The security of our products and systems is our top priority. On this page you will find all information to report security vulnerabilities responsibly.
Our Policy
Read our Coordinated Vulnerability Disclosure Policy to learn how we handle vulnerability reports.
Contact
Report a Vulnerability
Use our reporting form to submit security vulnerabilities confidentially. All reports are transmitted encrypted.
Reports can also be submitted anonymously. In this case, please provide as much detail and precision as possible to allow verification and assessment of the issue. Since digital ZEIT will not be able to follow up, the report may otherwise not be actionable.
Product vulnerabilities: psirt@digital-zeit.de (PGP Key)
Infrastructure vulnerabilities: csirt@digital-zeit.de (PGP Key)
For encrypted communication, please use our PGP key.
Phone
Calls are received by our switchboard, who will connect you to the appropriate contact. For transmitting confidential information, we recommend using encrypted email.