Microsoft Announces the Windows Bounty Program

Posted on July 26, 2017 by Paul Thurrott in Windows 10 with 6 Comments

Microsoft Announces the Windows Bounty Program

Microsoft today announced a bug bounty program for Windows 10 that will include payouts of up to $250,000.

“The Windows Bounty Program will will include all features of the Windows Insider Preview in addition to focus areas in Hyper-V, Mitigation bypass, Windows Defender Application Guard, and Microsoft Edge,” the Microsoft Security Research Center team writes. “We’re also bumping up the pay-out range for the Hyper-V Bounty Program.”

The Windows Bounty Program is really an expansion of previously separate bounty programs that Microsoft maintained for specific Windows features. But based on the success of those programs, and because “security is always changing and Microsoft prioritizes different types of vulnerabilities at different points in time,” the software giant has decided to provide bounties for bugs found in all of Windows.

The program will continue indefinitely and at Microsoft’s discretion, with different payout ranges based on the impacted feature of Windows and the severity of the found bug. The minimum payout is $500, and the highest payout, for Hyper-V, is $250,000.

I’m a bit surprised to discover that all of Windows wasn’t already covered by a bounty program, but this certainly seems to cover that need, if belatedly.

You can find out more at the Microsoft Bounty Programs website.


Tagged with

Elevate the Conversation!

Join Thurrott Premium to enjoy our Premium comments.

Premium member comments on news posts will feature an elevated status that increases their visibility. This tab would allow you to participate in Premium comments with other premium members. Register to join the other Premium members in elevating the conversation!

Register or Subscribe

Join the discussion!


Don't have a login but want to join the conversation? Become a Thurrott Premium or Basic User to participate