Microsoft Offers $15,000 for Detecting Bugs

Microsoft's New Bug Bounty Program Microsoft, the tech giant, has recently launched a bug bounty program that is specifically focused on artificial intelligence (AI). This program primarily targets the AI-powered Bing, the search engine developed by Microsoft. So, if you are a security researcher and feel like playing with the AI's limits, go ahead and start hacking! And did I mention that Microsoft is willing to hand you rewards of up to $15,000? Yes, you read that right. They are ready to dig deep into their pockets for this.

Vulnerabilities in bing.com and Bing Integrations 

The bug bounty program encompasses vulnerabilities in various aspects of AI-powered Bing. This includes bing.com in browsers, as well as the Bing integration in Microsoft Edge, the Microsoft Start Application, and the Skype mobile applications. 

But wait, there's more! Any vulnerabilities discovered in the AI-powered Bing experiences on bing.com, such as Bing Chat, Bing Chat for Enterprise, and Bing Image Creator, are also fair game. Scope and Rewards Now, let's talk about the exciting part - the scope of vulnerability hunting. 

Microsoft is particularly interested in vulnerabilities related to inference manipulation, model manipulation, and inferential information disclosure. Apart from that, they also want to hear about bugs and vulnerability chains that can influence or modify Bing's chat behavior. So, if you can make Bing go off the rails and say things it's not supposed to, Microsoft wants to know!

Submission Guidelines

Submitting your findings is relatively straightforward. All you need to do is identify previously unreported critical or important vulnerabilities in the AI-powered Bing. Make sure the vulnerability can be reproduced in the latest patched version of the product or service. And don't forget to provide clear details on the bug and step-by-step instructions on how to reproduce it. 

Finally, submit your reports through the MSRC Researcher Portal, specifically in the Bing section. 

Important Note 

While you are busy hacking away, Microsoft kindly requests that if you stumble upon any customer data, you stop right there and contact them immediately. They want to make sure their users' data remains secure and confidential. So, no peeking or pilfering, alright?

In a nutshell, Microsoft's new bug bounty program is an open invitation for security researchers to see if they can outsmart the AI-powered Bing. If you think you've got what it takes, grab your hacking tools, follow the submission guidelines, and who knows, you might just walk away with a hefty reward of up to $15,000. Happy hacking!