REPORT A PRODUCT CYBERSECURITY CONCERN

At Kidde Global Solutions (KGS), your safety and confidence in our products come first. This page is dedicated to help you report any potential product cybersecurity issue – quickly, easily, and securely.
What Is Product Cybersecurity?
Product cybersecurity focuses on protecting the digital and electronic components inside many modern safety products – such as connected alarms, devices with embedded software, or products that interact with apps or networks.
If something doesn’t seem to be working as expected or you believe you’ve found a vulnerability, we want to hear from you.
Kidde Global Solutions Product Security Incident Response Team (PSIRT)
Our PSIRT team specializes in identifying and addressing possible security risks within Kidde Global Solutions products and solutions. We investigate reports, minimize potential impact, and ensure our products remain safe and resilient.

Anyone – customers, security researchers, end users, or partners – can report suspected security issues.

HOW TO REPORT A SECURITY ISSUE

If you believe you have discovered a security issue within a KGS product offering, please send an email to ProductCybersecurity@kgsolutions.com. You will receive an acknowledgement within 48 hours.
We encourage you to encrypt your email using our public PGP (Pretty Good Privacy) key – a tool that protects your email so only our team can read it. 
How To Use the PGP Key
Download our public PGP key.
Import the PGP key into your email encryption software or PGP-compatible tool.
Use it to encrypt your message before sending it to us.

CLICK HERE FOR PGP KEY

What We Need From You

Please include the following information to help us understand the nature of your finding:
Product Name
Version Information – This may include software, firmware, or hardware version numbers. If you’re unsure of where to find these, details such as model number, labels, app version, or photos can help.
Description of Issue
Reproduction Steps
Contact Information

HOW TO REPORT A SECURITY ISSUE

If you believe you have discovered a security issue within a KGS product offering, please send an email to ProductCybersecurity@kgsolutions.com. You will receive an acknowledgement within 48 hours.
We encourage you to encrypt your email using our public PGP (Pretty Good Privacy) key – a tool that protects your email so only our team can read it. 
How To Use the PGP Key
Download our public PGP key.
Import the PGP key into your email encryption software or PGP-compatible tool.
Use it to encrypt your message before sending it to us.

CLICK HERE FOR PGP KEY

What We Need From You

Please include the following information to help us understand the nature of your finding:
Product Name
Version Information – This may include software, firmware, or hardware version numbers. If you’re unsure of where to find these, details such as model number, labels, app version, or photos can help.
Description of Issue
Reproduction Steps
Contact Information

VULNERABILITY DISCLOSURE POLICY

Kidde Global Solutions PSIRT employs a coordinated approach to vulnerability disclosure and publication. Our team will carefully determine the best path when issuing security advisories for supported Kidde Global Solutions products. Whenever possible, published security advisories will be made publicly available on our Product Security website.
To support our goal of responding to risks effectively and protecting our customers, we encourage reporters, researchers and vendors to engage KGS promptly, responsibly and transparently. No external disclosure, discussions or confirmation of issues will be released until after the PSIRT investigation is complete.

Disclaimer: Every alleged vulnerability presented to KGS is handled on a case-by-case basis. All elements of this policy are subject to change under KGS’s discretion. KGS strives to be consistent with industry best practices during the execution of this policy.