To improve the security of its Azure cloud service, Microsoft is launching a new lab and increasing bug bonus rewards.
At this year's Black Hat USA security conference, the company introduced its new Azure Security Lab, a set of dedicated cloud hosts that security professionals invited by the software giant can use to test vulnerabilities and vulnerabilities of Azure.
To prevent hacking attempts and testing from disrupting daily Azure operations, the lab is isolated from the main Azure framework. Additionally, Microsoft's own internal security team will be available to work with investigators on their findings.
In an announcement, the company explained the benefits of isolating its new Azure lab:
"Isolating Azure Security Lab allows us to propose something new: Researchers can not only look for vulnerabilities in Azure, they can also try to exploit them." Those with access to the Azure Security Lab can try out scenario-based challenges with rewards of up to € 300,000. "
bountybug
In addition to launching the Azure Security Lab, Microsoft is also changing the way the traditional Azure Bug Program works.
In the last 12 months, the company has awarded more than € 4.4 million in bug bonus rewards, and starting today, security researchers will be able to earn up to € 40,000 for various Azure vulnerability reports.
Those looking for even higher profits should look no further than Microsoft's Mitigation Mitigation Programs and Bounty for Defense, where researchers can earn up to € 100,000 per reports. circumvention of mitigation measures and other serious vulnerabilities.
Microsoft has also defined the Safe Harbor principles for security researchers who can identify and report vulnerabilities and other security problems without fear of legal repercussions.
Through ZDNet