Microsoft adds new products to bug bounty eligibility list | #microsoft | #hacking | #cybersecurity


Source: Obsidian Entertainment

In the past, Microsoft has made a show of just how much money it pays to bug hunters who spot fatal flaws in the company’s various products and services. And now, even more people can get in on cashing a Redmond-issued check thanks to the home of Windows 11 expanding what products are eligible for bug bounties.

As of April 5, Exchange on-premise, SharePoint on-premises, and Skype for Business on-premises are all eligible to be inspected for pests with the dangling carrot of monetary reward to follow should you find something of interest to Microsoft. The aforementioned SharePoint and Exchange products have also had high-impact scenarios detailed meaning you’ll now know which vulnerabilities and issues will fetch you the most amount of cash.

Submitting findings to Microsoft is not a guarantee of money. The company has its own rules of engagement you’ll have to follow (should you not follow them, it’s unlikely you’ll be rewarded), and there’s a long list of exceptions as to what is considered an eligible vulnerability. But, should you play by the book and spot something listed under the eligible categories, including remote code execution or XSS code injection vulnerabilities, you could score a five-digit haul.

With all that being said, sometimes the reward for doing the “right” thing isn’t as monetarily beneficial as it is to just do whatever you want. Take, for example, a recent crypto heist wherein $300 million of wETH was stolen and the hacker responsible was offered a $10 million bug bounty in exchange for returning the funds. And don’t forget the sixteen-year-old worth an estimated $14 million who made his fortune from toying with companies such as Microsoft. Still, criminal activity carries criminal consequences, so Microsoft’s offer of money for staying on society’s good side is, if nothing else, a risk-free proposition.

We may earn a commission for purchases using our links. Learn more.



Original Source link

Leave a Reply

Your email address will not be published.

sixty − fifty six =