Microsoft hands out $28k in Internet Explorer 11 security flaw bounty hunt
Microsoft launched a program for hackers and tech gurus to tune in and earn some big bucks by helping out the Internet Explorer team with hunting down security vulnerabilities. The reward was stated to be up to $11,000 per bug. Today, Katie Moussouris, Senior Security Strategist at Microsoft, has announced on TechNet that over $28,000 has been given away to community members who have worked with the company.
As well as the massive amount of money paid out to help make IE a safer and more secure web browser for consumers, Moussouris also touched on how they're working with more researchers than before. Being able to draw on well-established names directly helps Microsoft ensure its products are more secure at launch - and when it comes to a web browser, this is fairly important.
During the first 30 days of the Internet Explorer 11 preview period, the team received several vulnerability reports that qualified for a bounty. Compare this to the first 30 days of the IE10 beta, where the team received no bulletin-class reports at all. Sure, there's money involved, which is an obvious incentive, but to have such interaction from the community even with a bounty system in place is a big step forward.