According to news from IT House on November 23, Microsoft issued a press release today announcing that it will launch a new round of reward program for its Microsoft Defender, mainly encouraging security researchers to find vulnerabilities in the software, with a reward of up to $20000 (IT House Note: about 143000 yuan currently).
According to Microsoft, Microsoft Defender aims to enhance the security experience of Microsoft customers, and the Microsoft Defender reward program will invite researchers around the world to look for vulnerabilities in the software. The new round of Defender reward program will start with a "limited scope", focusing on Microsoft Defender for Endpoint API, and will be expanded over time to include other Defender products.
According to Microsoft, vulnerabilities submitted by security personnel must pass the following criteria to receive a reward:
Must be newly discovered vulnerabilities that do not include vulnerabilities previously reported to Microsoft
The vulnerabilities are serious and can be reproduced in the latest, fully patched versions of the product or service.
Security personnel should provide reproduction steps that are clear, concise and replicable, in either written or video format.
Microsoft said that depending on the severity of the vulnerability, the price of the reward would range from $500 to $8000 (currently about 3580 to 57280 yuan) for researchers who found vulnerabilities related to remote code execution in Defender. Awards in this category will range from $5000 to $20000 (currently about 35800 to 143000 yuan).
Advertisement statement: the external jump links (including not limited to hyperlinks, QR codes, passwords, etc.) contained in the text are used to transmit more information and save selection time. The results are for reference only. All articles of IT House contain this statement.