Tom Talks Microsoft Teams and Microsoft 365 news and opinions

Microsoft Teams Desktop first in new Microsoft App Vulnerability Bounty Program, awards up to $30,000

image

Microsoft has introduced a new Application Bounty Program that invites researchers to identify vulnerabilities in specific Microsoft apps and share them with Microsoft. Qualified submissions are eligible for bounty rewards from $500 to $30,000 USD.

The first, and at the moment only app, in this new program is Microsoft Teams desktop client. It’s not very clear but I would assume this is the Windows desktop electron client, I’d expect x86/x64 and ARM. More Microsoft apps will be added to this new app bounty program in the future.

There is an existing program that covers the Microsoft Teams Service, the Microsoft Online Services Bounty Program. This covers all of Office 365 and Microsoft Accounts.

There are also other specific bounty programs:

It’s nice to see Microsoft expand the scope of these bounty programs to apps. For more information check out the Microsoft blog post, or contact bounty@microsoft.com

About the author

Tom Arbuthnot

A Microsoft MVP and Microsoft Certified Master, Tom Arbuthnot is Principal Solutions Architect at Microsoft Collaboration specialists Modality Systems.

Tom stays up to date with industry developments and shares news and his opinions on his blog, Microsoft Teams Podcast and email list. He is a regular speaker at events around the world.

1 comment

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Tom Talks Microsoft Teams and Microsoft 365 news and opinions