Microsoft today announced a bug bounty program for Windows 10 that will include payouts of up to $250,000.
“The Windows Bounty Program will will include all features of the Windows Insider Preview in addition to focus areas in Hyper-V, Mitigation bypass, Windows Defender Application Guard, and Microsoft Edge,” the Microsoft Security Research Center team writes. “We’re also bumping up the pay-out range for the Hyper-V Bounty Program.”
The Windows Bounty Program is really an expansion of previously separate bounty programs that Microsoft maintained for specific Windows features. But based on the success of those programs, and because “security is always changing and Microsoft prioritizes different types of vulnerabilities at different points in time,” the software giant has decided to provide bounties for bugs found in all of Windows.
The program will continue indefinitely and at Microsoft’s discretion, with different payout ranges based on the impacted feature of Windows and the severity of the found bug. The minimum payout is $500, and the highest payout, for Hyper-V, is $250,000.
I’m a bit surprised to discover that all of Windows wasn’t already covered by a bounty program, but this certainly seems to cover that need, if belatedly.
Tagged with Security