Carding 4 Carders
Professional
- Messages
- 2,730
- Reaction score
- 1,467
- Points
- 113
What rewards can you get for valuable finds?
Microsoft has announced the launch of a new Bug bounty program designed to address vulnerabilities in the AI-based Bing tool. Researchers can receive up to $ 15,000 for detected defects.
The project affects the following products:
An official statement has appeared on the project's website: "We invite cybersecurity professionals from all over the world to take part in the search for vulnerabilities in our innovative product — Bing based on AI. Researchers can get anywhere from $2,000 to $15,000 for reporting problems they find."
The company invites program participants to focus their attention on the issues listed in the general, official list . We also welcome reports of any bugs that may lead to the following actions of intruders:
Some of the defects announced by Microsoft are not included in the scope of the program. For example: potentially dangerous defects for the attacker, hallucinations, inaccurate or offensive bot responses, and others.
Lynn Miyashita, Technical Manager of MSRC (Microsoft Security Response Center), states: "Collaborating with cybersecurity researchers through rewards programs is a key element of Microsoft's comprehensive strategy to protect our customers from potential threats."
This isn't Microsoft's first Bug Bounty. Over the past year, the company has paid a total of $ 13.8 million to 345 experts from different countries who helped discover about 1,180 bugs.
Microsoft has announced the launch of a new Bug bounty program designed to address vulnerabilities in the AI-based Bing tool. Researchers can receive up to $ 15,000 for detected defects.
The project affects the following products:
- Bing in web browsers: from chat to regular users on bing.com before business tools-Bing Chat for Enterprise and Bing Image Creator.
- Bing in Microsoft Edge: Bing-AI (including Enterprise service) integrated into the Edge browser
- Microsoft Start: Bing-AI in the app on iOS and Android.
- Skype for Mobile: Another app with Bing - AI integration for iOS and Android platforms.
An official statement has appeared on the project's website: "We invite cybersecurity professionals from all over the world to take part in the search for vulnerabilities in our innovative product — Bing based on AI. Researchers can get anywhere from $2,000 to $15,000 for reporting problems they find."
The company invites program participants to focus their attention on the issues listed in the general, official list . We also welcome reports of any bugs that may lead to the following actions of intruders:
- Manipulations with the Bing chat that may affect the experience of most users.
- Changes in the chat settings without the corresponding permissions.
- Bypassing the security system associated with saving your chat history and deleting them.
- Disclosure of confidential information, including information about internal operational processes.
- Bypassing the established restrictions in the chatbot.
Some of the defects announced by Microsoft are not included in the scope of the program. For example: potentially dangerous defects for the attacker, hallucinations, inaccurate or offensive bot responses, and others.
Lynn Miyashita, Technical Manager of MSRC (Microsoft Security Response Center), states: "Collaborating with cybersecurity researchers through rewards programs is a key element of Microsoft's comprehensive strategy to protect our customers from potential threats."
This isn't Microsoft's first Bug Bounty. Over the past year, the company has paid a total of $ 13.8 million to 345 experts from different countries who helped discover about 1,180 bugs.
