• Tech News
  • Fintech
  • Startup
  • Games
  • Ar & Vr
  • Reviews
  • How To
  • More
    • Mobile Tech
    • Pc & Laptop
    • Security
What's Hot

Trump Officials Slam ICEBlock as It Tops iPhone App Charts

July 4, 2025

Is Your Mac Slowing Down? Here Are 8 Tips to Speed it Up

July 4, 2025

Angry Birds Bounce, Kingdom Rush, and More

July 4, 2025
Facebook Twitter Instagram
  • Contact
  • Privacy Policy
  • Terms & Conditions
Facebook Twitter Instagram Pinterest VKontakte
Behind The ScreenBehind The Screen
  • Tech News
  • Fintech
  • Startup
  • Games
  • Ar & Vr
  • Reviews
  • How To
  • More
    • Mobile Tech
    • Pc & Laptop
    • Security
Behind The ScreenBehind The Screen
Home»Tech News»Microsoft doles out $13.7m in bug bounties
Tech News

Microsoft doles out $13.7m in bug bounties

August 12, 2022Updated:August 12, 2022No Comments4 Mins Read
Facebook Twitter Pinterest LinkedIn Tumblr Email
Microsoft doles out $13.7m in bug bounties
Share
Facebook Twitter LinkedIn Pinterest Email

Microsoft has paid out a complete of $13.7m (£11.3m, €13.3m) in bug bounties over the previous 12 months, with 330 researchers from 46 international locations acknowledged for his or her help in discovering and reporting a complete of 1,091 legitimate vulnerabilities in Redmond’s merchandise throughout 17 totally different bug bounty programmes.

Vulnerabilities in Microsoft’s wares are notably precious to risk actors as a result of ubiquitous nature of its merchandise within the fashionable enterprise – Microsoft often finds itself coping with high-profile incidents similar to PrintNightmare or ProxyLogon, and its month-to-month Patch Tuesday drop is a must-watch occasion for safety professionals.

On this foundation, bug bounties paid out by Microsoft are usually increased, with the common payout made by means of its programme coming it at $12,000, considerably above the overall common of $3,000, as reported by bug bounty specialist HackerOne.

The most important fee made by Microsoft previously 12 months was a large $200,000 underneath the Hyper-V programme, for an undisclosed vulnerability.

Damaged out by geography, Microsoft’s information reveal nearly all of the moral hackers working by means of its programmes are situated in China, India and the US, forward of Australia, Canada, Germany and the UK.

Microsoft’s Lynne Miyashita and Madeline Eckert wrote: “We imagine partnerships with the worldwide safety analysis neighborhood are an important a part of defending clients, and we are going to proceed to put money into and evolve our bounty programmes as part of strengthening these partnerships. Thanks to all of the researchers who shared their analysis with Microsoft this 12 months to assist safe thousands and thousands of Microsoft clients.”

See also  Sync Computing rakes in $15.5M to automatically optimize cloud resources – DailyTech

Previously 12 months, Microsoft has poured focus into evolving its programmes and partnerships in response to the altering risk panorama, they added, notably because it pertains to cloud-based services and products. “A key ingredient of this maturing course of is listening to suggestions from researchers to take away obstacles to entry and higher facilitate analysis efforts,” they mentioned.

“This 12 months, we launched a analysis problem and new high-impact assault situations throughout a lot of our programmes to award analysis centered on probably the most crucial areas to buyer safety.

“The addition of those assault situations to our Azure, Dynamics 365 and Energy Platform, and M365 bounty programmes helps to focus analysis on the best impression cloud vulnerabilities together with areas like Azure Synapse Analytics, Key Vault, and Azure Kubernetes Providers.”

In the meantime, the high-impact and precious work of moral hackers was on show this week at Black Hat USA in Las Vegas, the place crowdsourced bug specialist Bugcrowd ran its first in-person, dwell hacking occasion for the reason that Covid-19 pandemic started, on behalf of Certainly.com, a job-search platform.

Bugcrowd’s Vegas Bug Bash related Certainly.com with moral hackers to check out its business-critical assault surfaces and cell functions, uncovering probably harmful safety blind spots, and enhancing testing methodologies on the identical time.

Certainly is a long-standing buyer of Bugcrowd, and has already rewarded greater than 1,500 legitimate vulnerability submissions. The agency’s chief data safety officer (CISO) Anthony Moisant mentioned: “At Certainly, job seekers and employers alike belief us to guard their data. As we proceed fast development and product growth, everyone knows that unhealthy actors proceed advancing their ways.

See also  John Carmack’s AGI startup raises $20M from Sequoia, Nat Friedman, Patrick Collison and others – DailyTech

“By participating Bugcrowd researchers on this Bug Bash, we’re partnering with good actors to assist spot – and repair – vulnerabilities to assist folks get jobs securely.”

“We’re enthusiastic about this newest Bug Bash as a result of working in groups showcases the facility of human ingenuity, and we need to congratulate Certainly on being a security-first firm seeking to additional guarantee their digital belongings are safe,” mentioned Ashish Gupta, Bugcrowd CEO.

“With the sprawling digitisation of data and belongings, and the ensuing enhance in cyber threats, enterprise leaders must undertake steady testing practices that align with their steady innovation.”

Source link

13.7m bounties bug doles Microsoft
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Microsoft To Shut Down Skype In May, Shifting Users To Teams

February 28, 2025

Bug in macOS and iOS updates re-enables Apple Intelligence for some refuseniks

February 11, 2025

Microsoft Enables iPhone-to-Windows File Sharing for Insiders

December 16, 2024

Microsoft Copilot Vision: AI-Powered Browsing Redefined

December 11, 2024
Add A Comment

Comments are closed.

Editors Picks

Web3 projects have lost more than $2 billion to hacks this year

July 7, 2022

Splitit and Worldline sign North American BNPL deal

December 20, 2022

Apple Abruptly Tells Developer It Wants a 30% Cut from In-App ‘Tips’

February 22, 2024

Wyre integrates with crypto-to-cash service powered by MoneyGram and Stellar

July 6, 2022

Subscribe to Updates

Get the latest news and Updates from Behind The Scene about Tech, Startup and more.

Top Post

Trump Officials Slam ICEBlock as It Tops iPhone App Charts

Is Your Mac Slowing Down? Here Are 8 Tips to Speed it Up

Angry Birds Bounce, Kingdom Rush, and More

Behind The Screen
Facebook Twitter Instagram Pinterest Vimeo YouTube
  • Contact
  • Privacy Policy
  • Terms & Conditions
© 2025 behindthescreen.fr - All rights reserved.

Type above and press Enter to search. Press Esc to cancel.