Bug hunting (bug bounty) in Microsoft's services code continues, after Redmond announced the its tenth active program, the Azure DevOps Bounty Program.
Previously known as Visual Studio Team Services. The new Azure DevOps services provide developers with a collaborative cloud platform and automation.
The program Microsoft's bug bounty also covers Azure DevOps Server and Team Foundation Server products.
In a post on her blog companyς, ο Buck Hodges, director of engineering του Azure DevOps, δήλωσε ότι το πρόγραμμα έρχεται να συμπληρώσει τις υπάρχουσες πρακτικές ασφάλειας, όπως: code reviews, security scans and red team testing.
"Our Bounty program rewards independent security researchers who find imperfections and report them to us responsibly. We will publicly report to investigators who suggest these security issues, and for high-serious errors we will make payments of up to $ 20.000. ”
Bug Bounty programs have been multiplied, according to HackerOne, a company running such competitions. The company reported that 2018, these programs increased by 38 percent in North America, 37 percent in Asia, 26 percent in Europe, the Middle East and Africa and 143 percent in Latin America.
_________________
- Windows 10 monitors Disabled Activity History
- Bug Bounty by Google: 2.9 Million Dollars for 2017
- Privacy; Yeah right. Digital Shadows: leakage of 12 petabyte data
- Google Public DNS: At last with DNS-over-TLS