Microsoft has updated its Microsoft Office Bounty Program which will now run until end of this year with $15,000 worth of bounties for bounty hunters to find and report vulnerabilities. In a blog post, Redmond Software maker said this program was originally slated to end on June 15, but it will continue to run.
“The engagement we have had with the security community has been great, and we are looking to continue that collaboration on the Office Insider Builds on Windows,” Phillip Misner, Principal Security Group Manager, Microsoft Security Response Center, wrote on Friday. “This program represents a great chance to identify vulnerabilities before broad distribution.”
Microsoft’s Office bug bounty program extended
This news from Microsoft comes following Samsung’s announcement of Bug Bounty Program. Samsung is offering bug bounty program with $200,000 bounties for unreported vulnerabilities.
Microsoft has announced that its bug bounty program dedicated to Microsoft Office Insider on Windows with $500 and maximum financial reward of $15,000 for zero-day security flaws. This bug bounty payout for Office vulnerabilities between $6,000 and $15,000 that indicate several security flaws have been fixed and the company is focusing on critical issues.
The company is seeking our for issues in Office Insider Builds that is offering users with early access to Office features. “By testing against these early builds, problems can potentially be found before production release,” the blog post said. “This helps improve quality and protect customers” once the builds are out for the public.
Researchers are required to submit “an original and previously unreported vulnerability in the current Office Insider build on a fully patched Windows 10 desktop,” the company wrote in its blog post. “Submissions that can be reproduced on the previous build but not on the current aren’t considered eligible.”