Microsoft has recently increased their rewards for security experts who help increase the efficiency and productivity of their Windows operating systems and technologies. They are raising the Bounty for Defense program’s maximum from $50,000 to $100,000 USD. This is bringing their payout in line with the recent discovery of a major exploit.
The eligible defense submissions will include a technical whitepaper to describe their defense idea that can efficiently block the exploitation techniques that are currently being bypassed.
CHANGES IN BONUS PERIOD WILL DOUBLE REWARD PRIZES
Microsoft promises bigger payouts for security researchers who can find any authentic exploits and submit the ideas that can strengthen the defenses of Windows’.
The changes in the bonus period for the authentication vulnerabilities in Microsoft’s Online Services Bug Bounty. The payouts for this period will apparently receive twice the normal payout. Microsoft will part with the traditional $30,000 USD for a good authentication vulnerability.
BONUS PERIOD WILL END OCTOBER 5TH, 2016
This bonus period will end on October 5th. The affected services will include the Azure Active Directory, Microsoft Accounts and the the list of services of RemoteApp and Microsoft’s cloud app delivery service, have been added to the affected list of services.
Being members of the Window’s Insider early-access have helped influences on how Windows 10 was initially developed. Microsoft is currently spending a lot of money on its bug-hunting initiatives to help secure its offerings.
These additions to the Microsoft Bug Bounty Program will be a part of the rigorous security programs at Microsoft. These bounties will be working along with the security development lifecycle, and operational security assurance frameworks, as well as regular penetration testing of their products and services by third party audits.
BUG BOUNTIES ARE GREAT FOR IT PROFESSIONALS
A lot of software makers are increasingly turning to bug bounty programs in efforts to navigate a rapidly evolving data security landscape. This efficiently outnumbers and outwits all of the hackers. This is also making it better for information technology professionals, because they are also finding new ways of supplementing their income.