News

Microsoft’s new Bug Bounty Program will pay up to $15,000 for finding security flaws

Microsoft has announced a new Bug Bounty Program for Office Insider Builds on Windows with a payout range of USD $6,000 to $15,000.

The bug bounty programs are used by many tech companies including Google, Facebook, Yahoo, Uber and Microsoft. These programs reward the hackers and researchers for reporting security vulnerabilities. Since 2013, Microsoft has offered a lot of cash prizes to the hackers who exploit the bugs and report them to the company. These bounty programs help Microsoft harness the collective intelligence and capabilities of security researchers to help protect customers.

Office Insider Builds give users early access to the latest Office capabilities and security innovation. This helps the company to find any issues prior to the broader release. The blog reads,

“We’ve engineered Office to be secure by design and continually invest in enhancing its security capabilities. In the spirit of maintaining a high-security bar in Office, we’re launching the Bug Bounty Program for Office Insider Builds on Windows. The Office Bug Bounty Program complements our continuous internal engineering investments that include designing secure features through threat modeling, security in code reviews, security automation, and internal penetration testing.”

The kind of bugs for which Microsoft will pay out include:

  • Elevation of privilege via Office Protected View
  • Macro execution by bypassing security policies to block macros
  • Code execution by bypassing Outlook automatic attachment block policies

Their details are listed in the Microsoft Office Insider Builds on Windows Bounty Program Terms.

Duration of Program & Payout range

The program duration is for three months from March 15 to June 15, 2017. Bounty payout ranges during this period will be $6,000 to $15,000 USD. You can send your findings to secure@microsoft.com.

It is important to be noted that not all the vulnerabilities are eligible. You can check the list of what qualifies as an eligible submission here. You can sign up to be an Office Insider here.

Sponsored
Maheen Kanwal

Maheen Kanwal is a Tech Journalist at TechJuice. She covers the latest technological, telecom and business related, local & global news. (Reach at maheen@techjuice.pk)

Share
Published by
Maheen Kanwal

Recent Posts

Rs158 Billion Spent on Importing Mobile Phones to Pakistan in the Last Five Months

According to data from the Pakistan Bureau of Statistics (PBS), Pakistan imported mobile phones worth…

1 hour ago

EU Concerns Over Pakistan’s Military Court Sentences May Impact GSP+ Trade Benefits

The European Union (EU) has expressed concern over the recent convictions of 25 civilians by…

1 hour ago

SBP Announces December 25 as a Bank Holiday

The State Bank of Pakistan (SBP) has officially declared Wednesday, December 25, 2024, as a…

2 hours ago

Greentree Holdings Ltd Aims for 35% Stake in TRG Pakistan

AKD Securities, the manager of the offer, informed the main stock exchange on Monday that…

3 hours ago

PTV Faces Criticism Over Misleading Chemotherapy Statements

ISLAMABAD: On Pakistan Television (PTV), medical experts raised serious concerns over false information on chemotherapy…

3 hours ago

OpenAI Rolls Out Advanced Voice Mode for macOS ChatGPT App

OpenAI has introduced Advanced Voice Mode to ChatGPT's desktop applications for macOS apps, enabling users…

3 hours ago