The bug bounty hunt on code of Microsoft services continues, after Redmond announced the its tenth active program, the Azure DevOps Bounty Program.
Previously known as Visual Studio Team Services. The new Azure DevOps services provide developers with a collaborative cloud platform and automation.
Microsoft's bug bounty program also covers Azure DevOps Server products as well as Team Foundation Server products.
In a post on the company's blog, Buck Hodges, director of engineering of Azure DevOps, stated that the program complements existing security practices, such as: code reviews, security scans and red team testing.
“Our Bounty program rewards freelancers researchers ασφάλειας που βρίσκουν ατέλειες και μας τις αναφέρουν υπεύθυνα. Θα αναφέρουμε δημόσια τους ερευνητές που υποδεικνύουν αυτά τα θέματα ασφάλειας, και για errors of high severity we will make available payments of up to $20.000.”
Bug Bounty programs have proliferated, according to the HackerOne, a company that conducts such contests. The company reported that in 2018, these programs grew by 38 percent in North America, 37 percent in Asia, 26 percent in Europe, the Middle East and Africa, and 143 percent in Latin America.
_________________
- Windows 10 monitors Disabled Activity History
- Bug Bounty by Google: 2.9 Million Dollars for 2017
- Privacy; Yeah right. Digital Shadows: leakage of 12 petabyte data
- Google Public DNS: At last with DNS-over-TLS
