Do you suspect a security vulnerability with our website?
Submitting a responsible security disclosure helps us ensure a safe and secure online community.
They cover security vulnerability you believe may impact confidentiality, integrity or availability of The Co-operative Bank's systems or data.
We want to hear from you if you believe you have discovered a vulnerability on any of The Co-operative Bank's sites:
On this page:
What to include
We want to investigate any responsible disclosure as soon as possible. Make sure you:
- give us as much detail as possible and cite any sources or references
- include all steps required to exploit the vulnerability
- do not break any laws
- do not put any customer or The Co-operative Bank data at risk
Do not use this reporting system for any other purpose. Any submission unrelated to a responsible security disclosure will not receive a response.
How to submit a disclosure
Any information you gather should be kept confidential and only be used within your responsible security disclosure.
To submit a disclosure, email securitydisclosures@co-operativebank.co.uk.
If you need to share information which you believe is confidential or sensitive in nature, you can also email to discuss options.
The Co-operative Bank does not offer financial incentives for any responsible security disclosure, with the expectation that all disclosures are made in good faith.
Not found what you're looking for?
Contact our support team