Security Researcher Acknowledgments

Last updated: May 2026

SimpleFiber thanks the security researchers and engineers who have responsibly disclosed vulnerabilities to us through security@simplefiber.com and given us a reasonable window (30–90 days) to remediate before public disclosure.

Acknowledged researchers

No public acknowledgments yet. If you have responsibly disclosed an issue to us and would like to be credited here, mention that in your report and we'll add you after remediation.

How to report

See our security disclosure policy:

• Email: security@simplefiber.com (preferred)
• Backup contact: david@simplefiber.com
• Phone: 1-888-455-0151
• Disclosure window:30–90 days requested before public disclosure
• See /.well-known/security.txt for machine-readable contact info, and our Security Overview for the full security posture.

What we ask

• Give us a reasonable window (30–90 days for the kinds of issues we see) to remediate before publishing details.
• Limit your testing to data and systems you own or that you have explicit permission to test. Do not access, modify, or delete other customers' data.
• Don't exfiltrate data beyond what's needed to prove the issue. A single representative record is enough.
• Don't hold the report for ransom or threaten public disclosure as leverage. We'll engage in good faith if you do.

In return, we commit to acknowledging your report within 2 business days, providing a remediation timeline within 2 weeks, and crediting you here (with your permission) after the fix ships.