Deribit Accused of Silently Patching Vulnerabilities and Ignoring Researcher

The poster reported three critical vulnerabilities to Deribit through HackerOne. Deribit silently patched the issues without acknowledgment or payment, despite their program’s Fast Payment badge (promising payment within 30 days). After 70+ days, the poster received no response, despite multiple follow-ups via HackerOne and their support team. Mediation was unavailable, and the poster seeks advice on resolving the situation.