Sci-tech

Windows Bounty Program Offers Up to $250K Per Bug

Windows Bounty Program Offers Up to $250K Per Bug”

The top money reward is for bugs discovered in Microsoft's Hyper-V virtualisation software, but more modest rewards start at $500 (£382) for critical or important remote code execution flaws found in Windows. And payouts from $500 to $250,000 is one heck of an incentive to go looking for bugs. The new programs will have a maximum payout of $250,000 for a Hyper-V exploit with Remote Code Execution, and a maximum of $200,000 for Windows 10 exploits that are "Novel & fundamental advancement [s] in exploitation technology that universally bypasses current mitigations".

The newly-launched bounty program is not tied to any specific program but aims to make sure Windows packages not covered by other bounty scheme are being monitored. Microsoft's new program not only covers Windows 10 but also Windows Insider Preview which is geared towards testing new preview builds of its operating system as well.

- All security bugs are important to us and we request you report all security bugs to secure@microsoft.com via Coordinated Vulnerability Disclosure (CVD) policy.

The other focus areas include "Mitigation Bypass" (things that break Microsoft's security sandboxing), "Windows Defender Application Guard", "Microsoft Edge" and "Windows Insider Preview". 'Security is always changing and we prioritise different types of vulnerabilities at different points in time. These programs have been around for some time but surprisingly, Microsoft did not offer a reward for reporting issues with Windows.

"These bounty programs help Microsoft harness the collective intelligence and capabilities of security researchers to help protect customers". Rewarding security researchers with bounties costs peanuts compared to paying for a serious security snafu.



Like this

loading...
loading...

Latest


27 July 2017
Tupperware Brands Corporation (NYSE:TUP) Shares Dip Under Moving Averages
The sale was disclosed in a document filed with the Securities & Exchange Commission, which is available through this hyperlink . TRADEMARK VIOLATION WARNING: This piece of content was reported by Markets Daily and is the property of of Markets Daily.

27 July 2017
Firefighters rescue woman trapped in auto by flash flooding in KC area
A section of southbound Interstate 35 between Interstate 635 and 18th Street Expressway was closed because flooding. Indian Creek was cresting over the road bridges at every intersection, topping 27 feet at its highest.

27 July 2017
From one champion to another: Sania Mirza hails 'incredible ambassador' Mithali Raj
The Ashes is the only regular Test fixture in women's cricket while other teams mainly play the shorter formats. Raj said Indian Railways played a huge role in giving support to the players through jobs.

27 July 2017
McCain, battling cancer, returns to Senate for critical health care vote
The health industry has watched the debate nervously, and after the vote some groups urged the Senate to reconsider its approach. After a brief wave of acknowledgement, McCain swiftly cast a "yes" vote, followed seconds later by Johnson's aye.

27 July 2017
Karachi: Traffic policeman martyred, another injured in gun attack
Reacting on information police officials reached the site and collected the evidences. It later emerged that the attackers had made off with Constable Kamran's MP-5 rifle.

27 July 2017
Boeing Reports Strong Earnings in the Second Quarter
Other hedge funds have also added to or reduced their stakes in the company. 137 funds opened positions while 378 raised stakes. The company's cash from operations, at almost $5 billion in the quarter, was roughly double estimates of about $2.5 billion.

27 July 2017
Bellecapital International Ltd. Has $425000 Position in Gilead Sciences, Inc. (NASDAQ:GILD)
Alton sold 40,000 shares of the business's stock in a transaction on Friday, July 21st. ( GILD ) is its Earnings per Share or EPS. To measure price-variation, we found GILD's volatility during a week at 1.64% and during a month it has been found around 1.65%.

27 July 2017
Claims Climb in States by 10K
The Labor Department said Thursday that weekly unemployment applications rose by 10,000 to a seasonally-adjusted 244,000. The four-week moving average of initial claims, which evens out weekly volatility, remained flat last week at 244,000.

27 July 2017
Free hepatitis testing at Seminole County health department
It is transmitted through contaminated blood transfusions, needles and in some patients the cause is unknown. It can be both acute and chronic, ranging in severity from a mild illness to a lifelong one.

27 July 2017
Bank of America Upgrades Rating On Electronic Arts Inc. (EA)
Want to see what other investment firms are holding EA? Paloma Prtnrs Mgmt Co reported 39,484 shares or 0.03% of all its holdings. Electronic Arts (NASDAQ:EA) last released its quarterly earnings data on Tuesday, May 9th. (NASDAQ:EA) rating on Friday, May 26.