Microsoft’s Johnson: Data Breach Disclosures

New Windows Zero-day Bug Allows Deleting Arbitrary Files

A security researcher released exploit code for an unpatched bug in Windows that could allow an attacker with limited privileges to delete system files. Exploiting the bug requires winning a race condition ...
Security Boulevard
Facebook to pay ethical hackers $40,000 for reporting a single account-takeover bug

Facebook to pay ethical hackers $40,000 for reporting a single account-takeover bug

Amid mounting criticism from regulators and users over its data protection practices, Facebook is extending an olive branch to the ethical hacker community, increasing its bug bounty rewards while decreasing the technical ...
British Airways Site Infected with Card Skimming Code

British Airways Site Infected with Card Skimming Code

Security researchers believe the recent data breach announced by British Airways was the result of malicious code being injected into the company’s website to steal information from payment forms. According to researchers ...
Security Boulevard
Microsoft offers up to $100,000 to identity bug finders

Microsoft offers up to $100,000 to identity bug finders

Want to earn $100,000? You could win as much as that if you manage to uncover a serious vulnerability in Microsoft’s various identity services. And you could be helping millions of people ...
Bug bounty payouts double in 2018; India reports the most bugs while U.S. wins highest payouts

Bug bounty payouts double in 2018; India reports the most bugs while U.S. wins highest payouts

Some of the biggest players in various industries have turned to the crowdsourced security model – white hat-driven bug bounty programs – in a race to identify emerging vulnerabilities before the black ...
Uber updates bug bounty program, adds bonus for proof-of-concept (POC)

Uber updates bug bounty program, adds bonus for proof-of-concept (POC)

Ridesharing service Uber has announced some changes to its bug bounty program, including a new set of terms and conditions, as well as new monetization opportunities for white hatters. First off, some ...
Bug Bounty Program Overhaul

Does Your Bug Bounty Program Need an Overhaul?

They’ve become mainstream, but bug bounty programs are vast, varied and complicated When bugs proliferate, there’s potential for an infestation problem that needs to be fumigated. Over the past few years, bug ...
Security Boulevard
Amid Cambridge Analytica scandal, Facebook launches Data Abuse Bounty program

Amid Cambridge Analytica scandal, Facebook launches Data Abuse Bounty program

In light of the Cambridge Analytica fiasco, Facebook this week launched a bounty program to reward people who report misuse of data by developers and services integrated with the social network. The ...
Bug bounty program offers $100 million for ‘ethical hackers’ to earn by 2020

Bug bounty program offers $100 million for ‘ethical hackers’ to earn by 2020

HackerOne has put $100 million up for grabs in bug bounty rewards for “ethical hackers” over the next two years, the bug bounty platform said in a press release announcing the results ...