With companies like HackerOne and Bugcrowd making bug bounty popular day by day , we see many companies coming up with their own bug bounty programs. The big news here is that Microsoft is launching a new Xbox bug bounty program to reward security researchers and anyone who finds flaws in Xbox Live Network and services. Bounty amount will range from $500 to up to $20,000. Further Microsoft said that the bounty can go even higher depending on the quality of report and the impact that the flaws has.
The highest payout will be given out for critical remote code execution and elevation of privilege flaws, while security feature bypass, information disclosure, spoofing etc will include rewards up to $5,000
According to Chloe Brown, the program manager at Microsoft Security Response Center ( MSRC ), eligible submissions must include a clear and concise proof of concept.
The Xbox platform has been around since 2012. Even if Microsoft has been one of the first tech companies to run a bug bounty program, Xbox was never included in this program. The Xbox Bounty program comes just as Microsoft prepares to launch its Xbox Series X console xCloud game streaming service.
