submit bug bounty:https://www.rbs.co.uk/fraud-and-security.html#vulnerability
Reporting a Security Vulnerability
Our fundamental purpose is to keep our customers safe and secure and that’s why we at Royal Bank of Scotland take the security of our systems seriously.
If you have identified a potential vulnerability, please reach out to us via our Responsible Disclosure Programme – managed by Bugcrowd. Any submissions must be made through Bugcrowd and submitted on their platform.
NatWest Group will not accept submissions that have been found through the use of malignant or illegitimate means - If our Security Operations Centre identify your actions as malicious this will be treated as an attack and not a Responsible Disclosure submission.
Before submitting your finding please read over the terms and scope, and submit here.