Share This Post

Microsoft Introduces Limited-time Bounty Program for Speculative Execution Vulnerabilites

Microsoft Introduces Limited-time Bounty Program for Speculative Execution Vulnerabilites

Microsoft has now rolled-out a new bounty program that will last until December 31, 2018. This particular program seeks to deliver rewards for those that can help Microsoft identify a new class of existing vulnerabilities called Speculative Execution. Speculative execution side-channel attacks affect many modern processors and operating systems, including Intel, AMD, and ARM.

Bounty program details: https://aka.ms/sescbounty

Payout:

Microsoft has also provided guidance to mitigate and protect against this new class of vulnerability for both servers and workstations:

Windows Server guidance to protect against speculative execution side-channel vulnerabilities
Windows Client Guidance for IT Pros to protect against speculative execution side-channel vulnerabilities


Looking for an awesome, no-nonsense technical conference for IT Pros, Developers, and DevOps? IT/Dev Connections kicks off in Dallas, Texas in 2018!

IT/Dev Connections

Share This Post

Leave a Reply