Just In
- 12 hrs ago Dell Introduces AI-Powered Laptops and Mobile Workstations for Enterprises in India
- 14 hrs ago Meta AI Powered by Llama 3 Takes Aim at ChatGPT and Gemini: All You Need to Know!
- 15 hrs ago OnePlus Ace 3 Pro Leak Hints at New Design; Expected Launch, Specifications We Know So Far
- 15 hrs ago Vivo V30e Launch Date in India set for May 2: Flipkart Availability Confirmed
Don't Miss
- Finance FREE, FREE, FREE! 3:1 Bonus: Pharma Stock Hits Back-To-Back Upper Circuits; 500 Shares To Earn Rs 1,69,500
- Sports Manchester City vs Chelsea LIVE Streaming: Where to Watch FA Cup Semi-Final in India, UK, USA and Other Countries
- Movies Pukaar Dil Se Dil Tak Promo: Sayli Salunkhe Impresses In First Video Of Sony TV Show, Details About Her Role
- Lifestyle Golden Rules To Follow For Happy Marriage For A Long Lasting Relationship
- News Chinese President Xi Jinping Orders Biggest Military Reorganisation Since 2015
- Education Exam Pressure Does Not Exist; Studying Punctually is Crucial; Says Aditi, the PSEB 2024 Topper
- Automobiles Suzuki Swift Hatchback Scores 4 Star Safety Rating At JNCAP – ADAS, New Engine & More
- Travel Journey From Delhi To Ooty: Top Transport Options And Attractions
Microsoft Xbox Bug Bounty Program Offers $20,000 Rewards To Researchers
Microsoft seems very serious about the vulnerability issues with its Xbox consoles. The company has announced a new bug bounty program for security researchers and to open public which will allow them to find critical bugs in the Xbox ecosystem. The bounty rewards will be decided depending on the impact of the vulnerability and the quality of report submitted by the researcher.
"The Xbox Bounty Program invites gamers, security researchers, and others around the world to help identify security vulnerabilities in the Xbox Live network and services and share them with the Xbox team. Qualified submissions are eligible for bounty rewards of $500 to $20,000 USD," reads Microsoft blog post.
Companies like Apple, OnePlus, and others have already announced bug bounty programs in the past. Tech giants believe that this is a very effective and interesting way of finding critical bugs in their software and helps them to acknowledge the bug before anyone else can take advantage of it and break their software ecosystem.
Microsoft has introduced multiple tiers in this bug bounty program which acknowledge security impacts from RCET (Remote Code Execution Tampering). All the security impact comes with designated rewards depending on the high-risk factor of the vulnerability and reports quality.
To get qualify for an eligible submission, researches need to follow some important rules. First, they have to identify a bug which was not identified or reported in the past. The report should include clear instructions, consequences, and the steps to breach into the ecosystem. The report can be submitted in written or video format.
Microsoft suggests some of the example vulnerabilities which can lead bug hunter to find one or more security impact:
- Cross-site scripting (XSS)
- Cross-site request forgery (CSRF)
- Insecure direct object references
- Insecure deserialization
- Injection vulnerabilities
- Server-side code execution
- Significant security misconfiguration
- Using a component with known vulnerabilities
-
99,999
-
1,29,999
-
69,999
-
41,999
-
64,999
-
99,999
-
29,999
-
63,999
-
39,999
-
1,56,900
-
79,900
-
1,39,900
-
1,29,900
-
65,900
-
1,56,900
-
1,30,990
-
76,990
-
16,499
-
30,700
-
12,999
-
62,425
-
1,15,909
-
93,635
-
75,804
-
9,999
-
11,999
-
3,999
-
2,500
-
3,599
-
8,893