Microsoft: Paid $ 2 million last year to ordinary people who spotted bugs

Microsoft said in an official statement that it paid more than $ 2 million last year to ordinary people who identified vulnerabilities and vulnerabilities in its systems.

ΑThis was something that objectively helped her avoid the huge sums of money demanded by various security companies, and sometimes they do not do their job properly.

Seeing that this strategy is bearing fruit, he announced some upgrades to the Microsoft Bounty Programs, to encourage even more hunters to get involved in identifying serious vulnerabilities.

One of the changes that Microsoft is implementing is the speed of payment. From now on, vulnerability hunters will be able to get paid via PayPal or directly into their bank account in more than 30 countries around the world.

They will also be able to receive cryptocurrencies for their work. However, he has not yet revealed with which cryptocurrencies he will pay as a reward the people who discovered various vulnerabilities.

To make this happen and get the most out of the program, Microsoft partnered with HackerOne, a Bug Bounty solutions company, to streamline payment processes and vulnerability reporting. hunters etc.

Therefore, starting today, all monetary remuneration paid by Microsoft will be processed through HackerOne. Do not forget that the HackerOne platform provides maximum protection to people who do not want to be named when they discover vulnerabilities.

Rewards are also increasing. A few months ago, Microsoft increased the maximum reward level for the bounty Preview Insider from $ 15.000 to $ 50.000. It also increased the amount of money for Microsoft Cloud (Azure, Office 365) from $ 15.000 to $ 20.000.

Of course those of you who want to get involved with the Microsoft Bug Bounty Program to make money from this case, should keep in mind that the whole process is not easy at all, and obviously you need to have good programming knowledge, and many other skills on this area.

Source