August 2018 Security Update Release Today, we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about this month’s security updates can be found on the Security Update Guide. MSRC team Source: August 2018 Security Update Release
Microsoft’s Top 100 Security Researchers – Black Hat 2018 Edition This morning we are excited to unveil the security researcher leaderboard at the Black Hat Security Conference. This list recognizes the top security researchers who have contributed research to the Microsoft products and services. If you are curious on how we build the list, check out our blog from last week on The Making of the Top 100 Researcher List. We appreciate all the work and partnerships with the security community over the years. This is a good annual reflection point on the past year’s contributions. Keep up the great work and we look forward to hearing from you this year too. Microsoft’s Top 100 Security Researcher List Ranking Researcher Name 1 Ashar Javed 2 Junghoon Lee 3 Yuki Chen 4 Cameron Vincent 5 Richard Shupak 6 Suresh Chelladurai 7 [ more… ]
The Making of the Top 100 Researcher List At Black Hat USA each year, we unveil the Top 100 Security Researcher list to reflect the amazing engagement we get from the community. During this period, we had several thousand researchers engage with the Microsoft Security Response Center (MSRC). We appreciate all the partnership and coordination that goes on throughout the year. The Top 100 list gives us a chance to give a special shout out to some of the most productive researchers in the year. As we get closer to the reveal, a common theme in questions around the unveiling is, “how do I get my name up there?” This year we will give you an insider view into the making of the Top 100 list. To produce the list, we first start with all cases fixed between July 1, [ more… ]
Recognizing Q4 Top 5 Bounty Hunters We have tabulated the results from April-June 2018. The Top 5 Bounty Hunters for Q4 are now in. As with our list from Q3, we want to recognize both the leaders in payouts and in number of successful submissions. We appreciate the hard work and dedication of the following individuals and companies who have contributed to securing Microsoft’s products and services over our fourth quarter. Top 5 Bounty Hunters by Award: 1. Xiao Wei of Qihoo 360 Vulcan Team – $80,000 2. Yuki Chen of Qihoo 360 Vulcan Team – $45,000 3. Marcin Towalski (@mtowalski1) – $35,000 4. Qixun Zhao (@S0rryMybad) of Qihoo 360 Vulcan Team – $30,000 4. Soroush Dalili (@irsdl) of NCC Group – $30,000 Top 5 Bounty Hunters by Qualifying Bounty Submissions: 1. Ashar Javed (@soaj1664ashar) – 23 Submissions 2. [ more… ]
Microsoft launches Identity Bounty program Modern security depends today on collaborative communication of identities and identity data within and across domains. A customer’s digital identity is often the key to accessing services and interacting across the internet. Microsoft has invested heavily in the security and privacy of both our consumer (Microsoft Account) and enterprise (Azure Active Directory) identity solutions. We have strongly invested in the creation, implementation, and improvement of identity-related specifications that foster strong authentication, secure sign-on, sessions, API security, and other critical infrastructure tasks, as part of the community of standards experts within official standards bodies such as IETF, W3C, or the OpenID Foundation. In recognition of that strong commitment to our customer’s security we are launching the Microsoft Identity Bounty Program. The Microsoft Identity Bounty Program places a premium on security research into this critical technology that [ more… ]
Copyright © 2024 | WordPress Theme by MH Themes
