Windows Bounty Program Offers Up to $250K Per Bug

Windows Bounty Program Offers Up to $250K Per Bug”

The top money reward is for bugs discovered in Microsoft's Hyper-V virtualisation software, but more modest rewards start at $500 (£382) for critical or important remote code execution flaws found in Windows. And payouts from $500 to $250,000 is one heck of an incentive to go looking for bugs. The new programs will have a maximum payout of $250,000 for a Hyper-V exploit with Remote Code Execution, and a maximum of $200,000 for Windows 10 exploits that are "Novel & fundamental advancement [s] in exploitation technology that universally bypasses current mitigations".

The newly-launched bounty program is not tied to any specific program but aims to make sure Windows packages not covered by other bounty scheme are being monitored. Microsoft's new program not only covers Windows 10 but also Windows Insider Preview which is geared towards testing new preview builds of its operating system as well.

- All security bugs are important to us and we request you report all security bugs to via Coordinated Vulnerability Disclosure (CVD) policy.

The other focus areas include "Mitigation Bypass" (things that break Microsoft's security sandboxing), "Windows Defender Application Guard", "Microsoft Edge" and "Windows Insider Preview". 'Security is always changing and we prioritise different types of vulnerabilities at different points in time. These programs have been around for some time but surprisingly, Microsoft did not offer a reward for reporting issues with Windows.

"These bounty programs help Microsoft harness the collective intelligence and capabilities of security researchers to help protect customers". Rewarding security researchers with bounties costs peanuts compared to paying for a serious security snafu.

Like this


27 July 2017
BJP hits back at Congress for criticising Prez Ram Nath Kovind's speech
Speaking to ANI, Congress leader Anand Sharma said it is disrespecting the history and the sacrifices made by Mahatma Gandhi. The Congress is seeking to impact upon the great stature of Nehru ji, by insisting that his name should be taken always.

27 July 2017
Tuesday Evening Weather: Getting More Active
A tranquil weather pattern sets up for next week with lots of sunshine and temps slightly below average in the upper 80s near 90°. Widespread showers/storms continue moving east across northeast Kansas producing moderate rain at times and lightning.

27 July 2017
Tupperware Brands Corporation (NYSE:TUP) Shares Dip Under Moving Averages
The sale was disclosed in a document filed with the Securities & Exchange Commission, which is available through this hyperlink . TRADEMARK VIOLATION WARNING: This piece of content was reported by Markets Daily and is the property of of Markets Daily.

27 July 2017
JNU: Mandatory to fill MPhil, PhD forms in Hindi
Chakraborty said many students wrote their dissertation title in their local language script as a mark of protest. However, those which did not have the details transliterated in Hindi were sent back to them.

27 July 2017
BCCI adopts all Lodha reforms expect five having 'practical difficulties'
However, the Lodha panel had recommended that the majority of the power should be in the hands of the CEO. Interestingly, Choudhary insisted that the board has accepted all the recommendations.

27 July 2017
From one champion to another: Sania Mirza hails 'incredible ambassador' Mithali Raj
The Ashes is the only regular Test fixture in women's cricket while other teams mainly play the shorter formats. Raj said Indian Railways played a huge role in giving support to the players through jobs.

27 July 2017
Karachi: Traffic policeman martyred, another injured in gun attack
Reacting on information police officials reached the site and collected the evidences. It later emerged that the attackers had made off with Constable Kamran's MP-5 rifle.

27 July 2017
Bellecapital International Ltd. Has $425000 Position in Gilead Sciences, Inc. (NASDAQ:GILD)
Alton sold 40,000 shares of the business's stock in a transaction on Friday, July 21st. ( GILD ) is its Earnings per Share or EPS. To measure price-variation, we found GILD's volatility during a week at 1.64% and during a month it has been found around 1.65%.

27 July 2017
Claims Climb in States by 10K
The Labor Department said Thursday that weekly unemployment applications rose by 10,000 to a seasonally-adjusted 244,000. The four-week moving average of initial claims, which evens out weekly volatility, remained flat last week at 244,000.

27 July 2017
Grey's Anatomy Spinoff Casts Rosewood's Jaina Lee Ortiz
The 30-year-old is the first to sign on to Shonda Rhimes' upcoming series, which will center on a team of Seattle firefighters. To recap, here's what we know so far.