The Next WebThe Next Web Headlines

Microsoft launches Online Services Bug Bounty Program, includes Office 365 with rewards starting at $500

‹ PrevNext ›
23 September 2014, 1:39 pm by: Emil Protalinski
cash_money

Microsoft today launched the Microsoft Online Services Bug Bounty Program, offering security researchers rewards for submitted vulnerabilities. The program encompasses the various Online Services provided by Microsoft, and bounties for qualified submissions start at a minimum payment of $500, with more offered depending on the impact of the vulnerability. Eligible submissions include vulnerabilities of the following types: Cross Site Scripting (XSS), Cross Site Request Forgery (CSRF), unauthorized cross-tenant data tampering or access (for multi-tenant services), insecure direct object references, injection flaws, authentication flaws, server-side code execution, privilege escalation and significant security misconfiguration. That being said, as with any such program,...

This story continues at The Next Web

The post Microsoft launches Online Services Bug Bounty Program, includes Office 365 with rewards starting at $500 appeared first on The Next Web.

< Prev   Next Item >