The bug bounty on Microsoft's service code continues after Redmond announced the its tenth active program, the Azure DevOps Bounty Program.
Previously known as Visual Studio Team Services. The new Azure DevOps services provide developers with a collaborative cloud platform and automation.
Microsoft's bug bounty program also covers Azure DevOps Server and Team products Foundation Server.
In a post on the company's blog, Buck Hodges, director of engineering for Azure DevOps, said the program complements existing security practices such as: queues reviews, security scans and red team testing.
“Our Bounty program rewards independent security researchers who find flaws and report them to us responsibly. We will publicly cite researchers who point these out issues security, and for high-severity bugs we will make available payouts of up to $20.000.”
Bug Bounty programs have been multiplied, according to HackerOne, a company running such competitions. The company reported that 2018, these programs increased by 38 percent in North America, 37 percent in Asia, 26 percent in Europe, the Middle East and Africa and 143 percent in Latin America.
_________________
- Windows 10 monitors Disabled Activity History
- Bug Bounty by Google: 2.9 Million Dollars for 2017
- Privacy; Yeah right. Digital Shadows: leakage of 12 petabyte data
- Google Public DNS: At last with DNS-over-TLS