If you have a security concern with a service provided by Catalyst, or an open source project Catalyst is involved in, and would like to report suspicious activity, security breaches, potential security vulnerabilities, misuse, violation or abuse, you can contact us at: security _at_ catalyst.net.nz
The information you share with us as part of this process is kept confidential and will not be shared with third parties without your permission.
For encrypted communications, a PGP key is available from public key servers, or can be downloaded:
PGP fingerprint: 2C3A 24A0 D0F9 02D2 D120 CFF3 E3D5 E59A 6C16 852A
You can also subscribe to our email list and receive notifications of security advisories.