Bug Bounty Programs

Statistics Snapshot For Bounty Year in Review

Microsoft Bug Bounty Programs Year in Review: $13.6M in Rewards

Partnering with the security research community is an important part of Microsoft’s holistic approach to defending against security threats. Bug bounty programs are one part of this partnership. By discovering and reporting vulnerabilities to Microsoft through Coordinated Vulnerability Disclosure (CVD), researchers continue to help us secure millions of customers. Over the past 12 months, Microsoft …

Microsoft Bug Bounty Programs Year in Review: $13.6M in Rewards Read More »

JPSRT LOGO

マイクロソフト脆弱性報告窓口 ガイド (日本語)

マイクロソフトでは、より安全・安心な製品・サービスを提供するため、脆弱性報告窓口および報告者に対する脆弱性報奨金等の報奨プログラムを実施し、マイクロソフト製品やサービスに影響を及ぼすセキュリティの脆弱性を幅広く調査しています。また、より地域に密接し、多くの皆様から脆弱性に関する情報を受け付けるために、脆弱性の報告を日本語でも受け付けています。

Microsoft Bug Bounty Programs Year in Review: $13.7M in Rewards

Security researchers are a vital component of the cybersecurity ecosystem that safeguards every facet of digital life and commerce. The researchers who devote time to uncovering and reporting security issues before adversaries can exploit them have earned our collective respect and gratitude. The security landscape is constantly changing with emerging technology and new threats. By …

Microsoft Bug Bounty Programs Year in Review: $13.7M in Rewards Read More »

Recognizing Q3 Top 5 Bounty Hunters

Throughout the year, security researchers submit some amazing work to us under the Microsoft Bug Bounty program. Starting this quarter, we want to give a shout out to and acknowledge the hard work and dedication of the following individuals and companies who have contributed to securing Microsoft’s products and services over our third quarter (January-March …

Recognizing Q3 Top 5 Bounty Hunters Read More »

Extending Microsoft Edge Bounty Program

Over the past 10 months, we’ve paid out more than $200,000 USD in bounties to researchers reporting vulnerabilities through the Microsoft Edge Bounty Program. Partnering with the research community has helped improve Microsoft Edge security, and to continue this collaboration, today we’re extending the end date of the Edge on Windows Insider Preview (WIP) bounty …

Extending Microsoft Edge Bounty Program Read More »

Announcing a Microsoft .NET Core and ASP.NET Core Bug Bounty

It’s our pleasure to announce another exciting expansion of the Microsoft Bounty Programs. Today, we will be adding .NET Core and ASP.NET Core to our suite of ongoing bounty programs. We are offering a bounty on the Windows and Linux versions of .NET Core and ASP.NET Core starting on September 1, 2016. The program highlights are: …

Announcing a Microsoft .NET Core and ASP.NET Core Bug Bounty Read More »

Microsoft Bounty Programs Announce Expansion – Bounty for Microsoft OneDrive

At Microsoft, we continue to add new properties to our security bug bounty programs to help keep our customer’s secure. Today, I’m pleased to announce the addition of Microsoft OneDrive to the Microsoft Online Services Bug Bounty Program. This addition further incentivizes security researchers to report service vulnerabilities to Microsoft. As part of the Microsoft Online …

Microsoft Bounty Programs Announce Expansion – Bounty for Microsoft OneDrive Read More »