Computers

Bounty Hunters Needed, Apple And Microsoft Urging Public To Hunt For Bugs In Their Softwares

By on
Cybersecurity Vulnerability

It seems that big tech companies are starting to learn about cybersecurity threats and how to deal with them. Just recently, Apple and Microsoft announced they are willing to pay bounty hunters who can spot bugs in their softwares.

Microsoft bounty

Microsoft announced recently that they are extending their offerings for a cash reward to Microsoft Edge?s Remote Code Execution vulnerabilities. This new prize will be an addition to the ongoing Online services, Mitigation bypass, and Defense bounty programs. The reward payout is from $500 to $15000.

According to Microsoft Security Response Center?s Jason Shirk:

?This bounty continues our partnership with the security research community in working to secure our platforms, in pre-release stages of the development process. The Windows Insider program is built to help shape the future of Windows, and represents the latest in features, including new security features and mitigations.?

Shirk also outlined the program?s highlights as follows:

  • Bounty applies to Remote Code Execution vulnerabilities in Microsoft Edge on Windows Insider Preview and includes Open Source sections of Chakra
  • Program will run from from Aug. 4 through May 15, 2017
  • Payouts range from $500 to $15000 USD
  • If a participant reports a bug that was already found by Microsoft, reward will be a maximum of $1500
  • Bugs must be reproducible on the latest Windows Insider Preview.
Microsoft Edge Bounty Program

windowscentral.com

Apple offerings

Apple announced in the recent Black Hat Cybersecurity Conference in Las Vegas that they will be offering cash rewards?of up to?$200000, for hackers and researchers who can find security flaws in their products.

This move was probably led by the recent Pangu jailbreak for iOS 9.3.3. Just recently, Apple released the latest update for the iOS 9 in hopes of sealing the breach caused by recent jailbreaking made by Pangu.

Unfortunately, the current program from Apple is limited to researchers and developers that, in the past, have already reported bugs to them.

A system-wide hunt for bugs is a massive undertaking and would require a huge amount of workforce. Although Apple is clearly is not short of them, they still prefer the idea of taking control of everything. Nevertheless, this move is clearly a means of thwarting possible future hacks to their softwares.

For more, stay tuned to TheBitBag.

About the author

To Top