Search Results for "bug bounty"

Late To The Party, Microsoft Offers Mega Bounties For Software Bugs

Microsoft on Wednesday announced its first ever formal program to pay security researchers for finding software vulnerabilities in its newest products. The bug bounty program will launch on June 26 and be formally unveiled at the upcoming Black Hat Briefings hacker conference in Las Vegas at the end of July.  And, though late to the party, Microsoft is making up for lost time by going large. The Redmond, Washington software maker will pay researchers up to $100,000 for “truly novel” exploitation techniques that defeat protections built into the very latest version of Windows, 8.1 Preview. It will additionally pay $50,000 for ideas for defensive strategies that accompany a bypass, raising the total potential purse for an exploit and accompanying remediation to $150,000. Additionally, Microsoft announced a short-term bounty program for its Internet Explorer 11 Preview, with the company paying up to $11,000 USD for critical vulnerabilities that affect Internet Explorer […]

Continue Reading
China hacking

Pacific Rim: Sophos’ 6 Year Battle To Beat Back China State Hackers

Host Paul Roberts interviews Sophos CISO Ross McKerchar about the company’s recent report, Pacific Rim, detailing its multi-year battle to beat back a sophisticated Chinese hacking campaign.

Continue Reading
Robot Vacuum Liberation

Episode 254: Dennis Giese’s Revolutionary Robot Vacuum Liberation Movement

Security researcher and IoT hacker Dennis Giese talks about his mission to liberate robot vacuums from the control of their manufacturers, letting owners tinker with their own devices and – importantly – control the data they collect about our most intimate surroundings.

Continue Reading
Photo by RealToughCandy.com: https://www.pexels.com/photo/person-holding-a-sticker-11035393/

Episode 253: DevSecOps Worst Practices With Tanya Janca of We Hack Purple

Tanya Janca of the group We Hack Purple, talks with Security Ledger host Paul Roberts about the biggest security mistakes that DevSecOps teams make, and application development’s “tragedy of the commons,” as more and more development teams lean on open source code.

Continue Reading

Episode 248: GitHub’s Jill Moné-Corallo on Product Security And Supply Chain Threats

In this episode of the Security Ledger Podcast, Paul speaks with Jill Moné-Corallo, the Director of Product Security Engineering Response at GitHub. Jill talks about her journey from a college stint working at Apple’s Genius bar, to the information security space – first at product security at Apple and now at GitHub, a massive development platform that is increasingly in the crosshairs of sophisticated cyber criminals and nation-state actors.

Continue Reading
1 2 3 4 5 6 11