Readers assist assist Home windows Report. We could get a fee should you purchase by way of our hyperlinks.
Learn our disclosure web page to seek out out how are you going to assist Home windows Report maintain the editorial staff. Learn extra
Typically, tech corporations supply bug bounty packages to crowdsource security analysis, and Microsoft is doubling down on that concept in a giant means.
The corporate simply introduced an enormous $5 million prize pool for its 2025 Zero Day Quest, a worldwide hacking problem geared toward uncovering security flaws in cloud and AI merchandise.
Open from August 4 to October 4, the competition is asking on security researchers worldwide to dig deep into Microsoft platforms like Azure, Copilot, Dynamics 365, and M365. There’s even a 50% bounty bonus up for grabs for individuals who uncover important, high-impact points.
The highest-performing individuals will rating an invitation to a stay, invite-only hacking showdown at Microsoft’s Redmond campus subsequent spring. Alongside the best way, the corporate plans to supply assist and coaching from its inner AI Pink Staff and different security models.
This expanded initiative falls beneath Microsoft’s Safe Future Initiative (SFI), a push to overtake the corporate’s security tradition following federal criticism.
Microsoft says the findings from the competition will assist inform its AI and cloud security methods and shall be disclosed transparently by way of the CVE program, whether or not or not buyer motion is required.
As a part of the replace, Microsoft additionally boosted some .NET and ASP.NET Core bug rewards to $40,000 and widened its scope for the .NET bounty program.
Rishaj Upadhyay
