To enhance the safety of its Azure cloud computing service, Microsoft is launching a brand new lab in addition to rising bug bounty rewards.
At this 12 months’s Black Hat USA safety convention, the corporate unveiled its new Azure Safety Lab which is made up of a set of devoted cloud hosts that safety professionals invited by the software program big will have the ability to use to check for vulnerabilities and exploits in Azure.
To be able to stop hacking makes an attempt and exams from disrupting Azure’s day after day operations, the lab is remoted from the primary Azure framework. Moreover, Microsoft’s personal inner safety group might be accessible to work with researchers on their findings.
The corporate defined the advantages of isolating its new lab from Azure in an announcement, saying:
“The isolation of the Azure Security Lab allows us to offer something new: researchers can not only research vulnerabilities in Azure, they can attempt to exploit them. Those with access to the Azure Security Lab may attempt the scenario-based challenges with top awards of $300,000.”
Along with launching Azure Safety Lab, Microsoft can also be altering how the standard Azure bug bounty program works.
Over the previous 12 months, the corporate has awarded over $4.4m in bug bounty rewards and from right now, safety researchers will have the ability to earn as much as $40,000 for sever Azure vulnerability reviews.
These in search of even larger payouts have to look no additional than the Microsoft Mitigation Bypass Bounty and the Bounty for Protection Packages the place researchers can earn as much as $100,000 for mitigation bypass reviews and different extreme vulnerabilities.
Microsoft has additionally now laid out Secure Harbor ideas for safety researchers the place they’ll establish and report vulnerabilities and different safety points with out the worry of authorized repercussions.