Infosecurity Magazine: Microsoft Pays Another $100K Bug Bounty
Microsoft has paid out its second $100,000 bug bounty since launching its reward program in mid-2013. The award brings total payouts for the program to $253,000 in under a year.
The latest recipient is Yu Yang, a researcher with NSFOCUS Security Labs. He won the Mitigation Bypass bounty, which pays up to $100,000 for qualifying submissions from security researchers who discover “truly novel exploitation techniques” against protections built into the latest version of the Windows 8 operating system.
Microsoft does not release details of the vulnerabilities, let alone the exploits, discovered under the program until a patch is issued.