Celebrating ten years of the Microsoft Bug Bounty program and more than $60M awarded | MSRC Blog This year marks the tenth anniversary of the Microsoft Bug Bounty Program, an essential part of our proactive strategy to protect customers from security threats. Since its inception in 2013, Microsoft has awarded Read more…
Microsoft Releases Patch Updates for 5 New Zero-Day Vulnerabilities Nov 15, 2023NewsroomPatch Tuesday / Zero-Day Microsoft has released fixes to address 63 security bugs in its software for the month of November 2023, including three vulnerabilities that have come under active exploitation in the wild. Of the 63 flaws, three Read more…
Microsoft Warns of Fake Skills Assessment Portals Targeting IT Job Seekers Nov 11, 2023NewsroomThreat Intelligence / Cybercrime A sub-cluster within the infamous Lazarus Group has established new infrastructure that impersonates skills assessment portals as part of its social engineering campaigns. Microsoft attributed the activity to a threat actor it calls Read more…
Announcing the Microsoft Azure DevOps Bounty program | MSRC Blog The Microsoft Security Response Center (MSRC) is pleased to announce the launch of the Azure DevOps Bounty program, a program dedicated to providing rock-solid security for our DevOps customers. Starting January 17, 2019, we’re excited to offer rewards up to Read more…
Microsoft Bounty Program Updates: Faster bounty review, faster payments, and higher rewards | MSRC Blog In 2018 The Microsoft Bounty Program awarded over $2,000,000 to encourage and reward external security research in key technologies to protect our customers. Building on that success, we are excited to announce a number of Read more…
Microsoft Announces Top Three Contributing Partners in the Microsoft Active Protections Program (MAPP) | MSRC Blog Today Microsoft announced the MAPP program Top Vulnerability Contributors, Top Threat Indicator Submitters, and Top Zero-Day Reporting for the period of July 1, 2018 – June 30, 2019. The Microsoft Active Protections Program provides Read more…
Concluding the Azure Sphere Security Research Challenge, Microsoft Awards $374,300 to Global Security Research Community | MSRC Blog The Azure Sphere Security Research Challenge brought together 70 researchers from 21 countries to help secure Azure Sphere customers and expand Microsoft’s partnerships with the global IoT security research community. During the Read more…
A new experience for reporting copyright or trademark infringement on Microsoft Services | MSRC Blog The Notice of Copyright or Trademark Infringement Portal has helped protect Microsoft’s users and customers from intellectual property infringement across online services like Microsoft Azure, Office, Outlook, Skype, Stream, Microsoft News, Sway, Hotmail, NuGet, and Read more…
One-Click Microsoft Exchange On-Premises Mitigation Tool – March 2021 | MSRC Blog We have been actively working with customers through our customer support teams, third-party hosters, and partner network to help them secure their environments and respond to associated threats from the recent Exchange Server on-premises attacks. Based on these Read more…
Microsoft Bug Bounty Programs Year in Review: $13.6M in Rewards | MSRC Blog Partnering with the security research community is an important part of Microsoft’s holistic approach to defending against security threats. Bug bounty programs are one part of this partnership. By discovering and reporting vulnerabilities to Microsoft through Coordinated Read more…