Microsoft Security Response Center Blog Alerts

Tag Search: MSRC alerts

Practical advice for earning higher Microsoft bounty awards

Posted on Tuesday March 12, 2019 | MSRC alerts

This year at the Nullcon International Security Conference I shared practical advice for how security researchers can maximize the impact of their security vulnerability submissions and earn higher bounty awards under the Microsoft Bounty Program. For those who couldn't be there, I had two core pieces of advice. First, focus vulnerability research on the products...

February 2019 Security Update Release

Posted on Tuesday February 12, 2019 | MSRC alerts

Today, we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about this month's security updates can be found on the Security Update Guide.

Microsoft's Cyber Defense Operations Center shares best practices

Posted on Wednesday January 23, 2019 | MSRC alerts

Today, a single breach, physical or virtual, can cause millions of dollars of damage to an organization and potentially billions in financial losses to the global economy. Each week seems to bring a new disclosure of a cybersecurity breach somewhere in the world. As we look at the current state of cybersecurity challenges today, we...

Announcing the Microsoft Azure DevOps Bounty program

Posted on Thursday January 17, 2019 | MSRC alerts

The Microsoft Security Response Center (MSRC) is pleased to announce the launch of the Azure DevOps Bounty program, a program dedicated to providing rock-solid security for our DevOps customers. Starting January 17, 2019, we're excited to offer rewards up to US$20,000 for eligible vulnerabilities in Azure DevOps online services and the latest release of Azure...