Partnering to Advance Security & Safeguarding Our Platform & Protection Capabilities Delivering a Wide-Ranging Bug Customers from Illegal Activity Bounty Program PayPal is actively involved with organizations to support We continuously work to combat and prevent the illicit the advancement of the security ecosystem and PayPal partners with HackerOne’s global use of our services and strive to make our platform improve customer protection. Current memberships community of independent security researchers, safe and secure for all to use. We devote significant and sponsorships include the Anti-Phishing Working who help to make our products and services resources globally to financial crime compliance and Group (APWG), Financial Services Information Sharing more secure. We hosted our third annual refer cases to assist law enforcement officials in their and Analysis Center, FIDO Alliance, Women in LiveHack Event in 2022, to bring together PayPal efforts to identify, investigate and stop illegal activity. Cybersecurity, World Economic Forum’s Centre security engineers, external researchers and the for Cybersecurity and National Cyber-Forensics HackerOne triage team to find and remediate We also seek to amplify our capabilities beyond PayPal Training Alliance. vulnerabilities in real time within PayPal’s internal through multisector partnerships and initiatives and look applications. We also held an internal Bugfest for new opportunities to utilize our data, relationships In 2022, we contributed to continued research with event, where PayPal engineers from across and investigation teams to further protect our customers leading research groups, peer companies and the globe collaborated in person and virtually and communities. We employ our expertise to identify, universities to support a more secure digital economy to improve the security, functionality and user interrupt and enable prosecutions for those who traffic for all, including: experience of our products. fentanyl, opioids and other drugs, launder money, • Finalizing research with Georgia Institute of defraud customers, engage in human trafficking and Promoting Awareness & Education Technology, resulting in the development of risk child exploitation and enable terrorist activities. For for Employees signals to help prevent fraud in a passwordless example, as a member of the Tech Coalition and authentication environment. ICMEC’s Financial Coalitions, we work collaboratively Our Information Security Training and Awareness to protect children from online sexual exploitation and program focuses on employee development and • Partnering with the Official Monetary and Financial abuse. This partnership model will continue to be an education, the needs of the enterprise and the shifting Institutions Forum to publish The Role of Data important lever in contributing to the work of stopping cyber-threat landscape. In addition to required annual Science in Maintaining Trust and Responsible global financial crimes. information security compliance training for all Innovation, underscoring how data can be used employees and contractors, we offer ongoing learning effectively to protect consumers from fraud and “ As a founding member of ICMEC’s U.S. and APAC opportunities to increase security awareness across improve the quality of the user experience. Financial Coalitions against Child Sexual Exploitation PayPal, with specific educational programs for our • Continuing our work with the APWG and presenting and a long standing partner of more than 15 years, engineers. findings on pervasiveness of scam websites and the PayPal continues to graciously share knowledge, Our 2022 Cybersecurity Awareness Month included protections that can be implemented to help prevent time and expertise with financial industry peers to various activities, including our third annual internal these sites from reaching users at the 2022 eCrime help counter child sexual exploitation and abuse Security Conference. We engaged with our employees Conference. online. The company’s generous financial and in-kind globally throughout the month, providing a broad • Collaborating with North Carolina State University support is vital to furthering range of opportunities to expand their security to improve customer protection by measuring our global efforts to make knowledge and awareness. and supporting the prevention of abuse of the world a safer place for all children.” Bindu Sharma telecommunication infrastructure in phishing Vice President, Global Policy & Industry Alliances attacks and scams. Managing Director, Asia Pacific International Centre for Missing & Exploited Children