Scam or Legit? - Bug Bounty request

Got the below email from a Gmail account to our generic website mailbox. No other details. Seems like someone looking to sell a service. Thoughts?







Hello,



I trust you're well.



I've identified potential security issues in your application, aiming to ensure user safety. These vulnerabilities could impact functionality and compromise user security. I'd appreciate a suitable channel to share more details, facilitating a prompt review and resolution by your team.



If you have a Bug Bounty program, kindly provide information. …

account application bounty bug bug bounty compromise cybersecurity email gmail hello impact legit request safety scam security security issues sell service thoughts trust user security vulnerabilities website