Say hello to our new “In the Wild” series, where you'll get to learn a little more about some of our MSRC colleagues. First is Lynn, who went straight to Microsoft after graduation, where she uses her passion for bounty insights to protect customers and reward researchers.

The #BlueHat October 2023 Call for Papers is NOW OPEN, and will close on August 18. We encourage everyone in the security community (that means YOU!) to submit a Breakout Session or Lightning Talk. For topic inspiration & details, check out our blog post: msft.it/60189B9ga

Microsoft Bug Bounty Programs awarded $13.8M to 345 security researchers from 45 countries across the globe in the past year. A huge thank you to all the security researchers who partnered with us to help protect millions of customers: msft.it/60169HvY2 #bugbounty

Congrats to all of the researchers. Keep up the great research and thank you for helping to secure our customers!

Really excited about this new bounty program. Check out the blog for more information and share your findings with the MSRC!

Join us in celebrating a decade of global collaboration with the Microsoft Bug Bounty program! We’ve awarded over $60M to security researchers worldwide, enhancing the security of our products and services. 🎉 Learn more in our blog post: msft.it/6016iGYss

Congratulations to all the researchers recognized in this quarter’s MSRC 2023 Q4 Security Researcher Leaderboard! 🎉 For more information, check out our blog post: msft.it/6011iL9LR #cybersecurity #securityresearch #bugbounty

💻 Sherrod DeGrippo 🛸 Lynn Miyashita & Andrew Paverd also talk about what defines an AI bug, and the potential for finding vulnerabilities that span the traditional scope of a bug hunter and new vulnerabilities that may arise because of AI. Details on the bounty program here: msft.it/6012lRMOC

We’re excited to announce that the Microsoft Bounty Program has awarded $16.6M in bounty awards to 343 security researchers from 55 countries over the past year. Each year, we identify over a thousand potential security issues together, safeguarding our customers from possible

The Microsoft Researcher Recognition Program offers public thanks and recognition to security researchers who help protect our customers by discovering and sharing security vulnerabilities under Coordinated Vulnerability Disclosure. Today, we are excited to recognize this year’s

🚨 Attention security researchers, responders, and everyone in the security community! 🚨 The #BlueHat 2024 Call for Papers is now open! We invite everyone to submit proposals for 45-minute Breakout Sessions or 15-minute Lightning Talks. Don’t miss this opportunity to share your

Thank you to everyone who attended the MSRC Researcher Celebration at #BHUSA last night. Your commitment to "Security Above All Else" is what drives our community forward. We hope you had the opportunity to network, learn, and connect with others who share your passion. A special

As part of our Secure Future Initiative and to further the security of our customers, ourselves, and the world, today we are introducing the most transparent security research event in history: The Zero Day Quest. This new hacking event will be the largest of its kind, with an

Announcing LLMail-Inject: the adaptive prompt injection challenge! We finally release the details of our SaTML Conference competition! RT appreciated! 🙏 1/n 🧵

Are you a security researcher interested in AI bounty submissions? Join us to learn more about Microsoft's Bug Bounty Program and how to qualify for the Zero Day Quest. In this session, hosted by Lynn Miyashita (Lynn) and Andrew Paverd (Andrew Paverd), we'll discuss Microsoft's

We’re excited to announce the scope of the Microsoft AI Bounty Program has expanded to include new vulnerability types for Critical and Important cases, with awards up to $30,000. New vulnerability types: - Deserialization of Untrusted Data - Injection (Code Injection) -

If you missed yesterday’s session on security research in Copilot Studio, it’s not too late! The full recording is available now on YouTube. Catch Scott Gorlick share his expertise on leveraging the Copilot ecosystem for enhanced security research: youtube.com/watch?v=0Bw2YC…

Earlier this month, we hosted the Microsoft Zero Day Quest, the largest live hacking event of its kind. This inaugural event brought together top security researchers from around the world to find the highest-impact vulnerability scenarios in Microsoft Copilot and Cloud. The

We're now offering bounty awards up to $30,000 for AI vulnerabilities in Dynamics 365 and Power Platform. Eligible vulnerability types are defined in the Microsoft Vulnerability Severity Classification for AI Systems (aka.ms/aibugbar) and include: • Inference

The Microsoft Researcher Recognition Program offers public thanks and recognition to security researchers who help protect our customers by discovering and sharing security vulnerabilities under Coordinated Vulnerability Disclosure. Today, we are excited to recognize this year’s