Microsoft Will Pay You $450,000 To Find Vulnerabilities: Recently the software giant Microsoft introduced a new bug bounty reward for the “speculative execution” CPU vulnerabilities that were disclosed a few months ago. The software giant announced a reward program for anyone who encounters glitches similar to Meltdown and Specter.
After Intel announced to pay up to $250,000 to anyone who discovers vulnerabilities like Meltdown and Specter, it was Microsoft who will now reward security researchers who find successful exploits that use speculative execution codes.
Microsoft promises to pay $250,000 to anyone who finds “new categories” of speculative execution attacks – a trick used by processors to speed up performance, and that can be exploited to leak information into the Meltdown and Specter flaws.
Not only these, the software giant will also pay up to $200,000 to anyone who discovers vulnerabilities in Windows and Azure. In a blog post, the company’s security team manager, Phillip Misner said:
“Speculative execution is truly a new class of vulnerabilities, and we expect that research is already underway exploring new attack methods. This bounty program is intended as a way to foster that research and the coordinated disclosure of vulnerabilities related to these issues.”
What’s your opinion on this? Discuss with us in the comments.