The hunt for errors (bug bounty) in the code of Microsoft services continues, since the Redmond announced it its tenth active program, the Azure DevOps Bounty Program.
Previously known as Visual Studio Team Services. The new Azure DevOps services provide developers with a collaborative cloud platform and automation.
Microsoft's bug bounty program also covers the productthose of Azure DevOps Server and Team Foundation Server.
In a post on the company's blog, Buck Hodges, Director of engineering of Azure DevOps, stated that the program comes to complement existing security practices, such as: code reviews, security scans and red team testing.
"Our Bounty program rewards independent security researchers who find imperfections and report them to us responsibly. We will publicly report to investigators who suggest these security issues, and for high-serious errors we will make payments of up to $ 20.000. ”
Bug Bounty programs have been multiplied, according to HackerOne, a company running such competitions. The company reported that 2018, these programs increased by 38 percent in North America, 37 percent in Asia, 26 percent in Europe, the Middle East and Africa and 143 percent in Latin America.
_________________
- Windows 10 monitors Disabled Activity History
- Bug Bounty by Google: 2.9 Million Dollars for 2017
- Privacy; Yeah right. Digital Shadows: leakage of 12 petabyte data
- Google Public DNS: At last with DNS-over-TLS
