CHANNELS

infoTECH Feature

October 09, 2013

$100k Bounty Paid by Microsoft for Windows 8.1 Bug

Microsoft (News - Alert) has handed out its first $100,000 bounty to a professional hacker who discovered a bug in Windows 8.1.

According to a report by Reuters (News - Alert), Microsoft's payout is one of the highest bounties ever awarded for this type of work. Microsoft has traditionally shied away from paying bounties for security issues, but earlier this year the company announced its first bug bounties.

The recipient of the pay out, James Forshaw, is the head of vulnerability research at London-based security consulting firm Context Information Security. Forshaw, a professional hacker and computer wizard, collected the bounty for discovering a new exploitation technique in Windows. His discovery will help Microsoft shore up its security on multiple levels. It will also help “develop defenses against entire classes of attack,” Katie Moussouris, senior security strategist at the Microsoft Security Response Center, wrote in her blog post.

This was not Microsoft's first time working with Forshaw. He was recently paid a more modest $9,400 by the computer giant for bringing its attention to several vulnerabilities in a preview release of Internet Explorer 11.

Forshaw's Black Hat profile states that the consultant has been, “involved with computer hardware and software security for almost 10 years with a skill set which covers the bread and butter of the security industry such as application testing, through to more bespoke product assessment, vulnerability analysis and exploitation.”

Over the years financial pay outs by tech companies to researchers and hackers has become a important step in software development.

"The reason we pay so much more for a new attack technique versus for an individual bug is that learning about new mitigation bypass techniques helps us develop defenses against entire classes of attack," Moussouris added. Although the IE11 bug bounty program is now closed, Microsoft is still seeking out Windows 8.1 bugs. So far Microsoft has paid out over $128,000.

Edited by Alisen Downey

FOLLOW US

Webinars

Vonage Elevates Cloud Communications with Advanced Noise Cancellation and AI Integration
Rich Tehrani

Cyara Enhances AI and Assurance Services in the CX Space
Rich Tehrani

MiaRec Demos AI-Powered Quality Assurance Tools for Contact Centers
Rich Tehrani

What is a Data Lake
Rich Tehrani

How LeapXpert Combines Consumer Messaging with Enterprise Security and Compliance
Rich Tehrani

CHANNELS

infoTECH Feature

$100k Bounty Paid by Microsoft for Windows 8.1 Bug

infoTECH Headlines

What Is AWS EFS? Features, Use Cases, and Critical Best Practices

Cost-Effective Approaches to s1000d Conversion

A virtual crossroads for technology enthusiasts

Benefits of employee monitoring software in preventing overworking of workers

CI/CD: Trends and Predictions for 2024

Technical Documentation for IT: A Practical Guide

Managing Your Costs on AWS: A 2024 Guide

What Is Application Dependency Mapping?

Top 5 Kubernetes Errors and How to Solve Them

How Artificial Intelligence Can Improve the World of Online Gaming Platforms

Subscribe to InfoTECH Spotlight eNews

infoTECH Whitepapers

What is Information Tehnology

Subscribe to InfoTECH Spotlight eNews InfoTECH Spotlight eNews delivers the latest news impacting technology in the IT industry each week. Sign up to receive FREE breaking news today!
FREE eNewsletter