CIOTech Outlook Team | Wednesday, 30 July 2025, 09:48 IST
The National Security Database (NSD) has officially conferred its Falcon recognition upon an ethical hacker, a standout performer in the Groww–BreachX Live Bug Bounty Challenge conducted earlier this month during BSides Bangalore.
The Falcon tier is NSD's highest mark of distinction for cybersecurity researchers demonstrating exceptional ethical conduct, technical depth, and contribution to national digital resilience.
“This was the best security event I’ve attended in years. Not only did I get to engage with Groww’s security team and work on real fintech assets, but I also met some of India's top hackers in person — many of whom I only knew by their online handles. This kind of exposure is what helps us grow,” said a participating hacker, reflecting on the event.
India’s First Curated Live Bug Bounty for Fintech
Held as part of BSides Bangalore, the event was invite-only, with researchers shortlisted by Groww’s security leadership from BreachX’s vetted researcher pool. The participating hackers were part of BreachX’s private bug bounty program, backed by the National Security Database.
Groww's on-site 8-member security team used the BreachX platform to triage submissions in real time, validating vulnerabilities on-the-spot, collaborating with researchers, and initiating immediate remediation—compressing weeks of testing into a single day.
The bounty structure offered rewards up to $7,500 per validated bug, while giving researchers full visibility and recognition for their work.
Why Groww Chose BreachX Over Global Platforms
BreachX was chosen over established players like BugCrowd—not just for its technology, but for its India-first model:
Zero Day Intelligence: BreachX's Early Warning Radar
Beyond bounty programs, BreachX is India’s only platform that operationalizes the “Adversary Web” (A-Web)—a strategic subset of the dark web where attackers coordinate breaches, test exploits, and leak stolen data.
Through its Zero Day Intelligence (ZDI) engine, BreachX offers clients like Groww early warnings up to 90 days in advance, using real-time actor tracking, exploit marketplace monitoring, and proof-of-concept surveillance.
“While others monitor the dark web, we infiltrate where attackers actually talk, trade, and plan. ZDI gives our clients time to prepare for what’s coming, not just react after it hits,” said Rajshekhar Pullabhatla, Founder of BreachX.
ZDI simulations are used by enterprise CISOs and SOC teams to simulate sector-specific attack paths based on real adversary behavior, giving clients unparalleled readiness.
National Security Database (NSD): Fueling a New Generation of Security Talent
At the core of BreachX’s success is the National Security Database (NSD) — a certified, structured ecosystem that vets and trains India’s cybersecurity talent.
Hackers who participate in BreachX bounty programs are now fast-tracking their careers — getting job offers, red team gigs, and visibility in the security ecosystem.
The Signal is Clear
The success of the Groww–BreachX challenge wasn’t just about the bugs. It was about showing how collaborative security works. When ethical hackers, enterprise security teams, and real-time triage come together under a trusted platform, the results go beyond compliance — they drive transformation.
For ethical hackers: This is your path to recognition.
For enterprises: This is the new standard in responsible, controlled, high-value security testing.
To run a private bounty event or get early threat warnings with ZDI, reach out:
hello@breachx.com | www.breachx.com
.jpg)
