Now there's a bug bounty program for the whole Internet

Microsoft and Facebook today jointly launched a new initiative dubbed the Internet Bug Bounty program that aims to secure the Internet stack by rewarding anyone and everyone who hacks it, and responsibly discloses any vulnerabilities they find. The two companies will be supported by volunteers from Etsy, Chrome and ISEC Partners calling themselves HackerOne.

To qualify, the bugs must affect software implementations from a variety of companies, potentially result in severely negative consequences for the general public, and manifest themselves across a wide base of users. In addition to rewarding researchers for privately reporting the vulnerabilities, program managers will assist with coordinating disclosure and bug fixes involving large numbers of companies when necessary.

One focus of the program is to help secure widely used open-source software like OpenSSL, Python, Ruby, PHP, Django, Rails, Perl, Phabricator, Nginx, and Apache. Minimums start at $300 for some programs and up to $2,500 for others. The program will also pay minimum bounties of $5,000 for significant vulnerabilities that affect the Internet at large.

Read more -here-

• Comcast rolls out 'Now' prepaid phone and internet plans
• Logitech adds ChatGPT button to hardware
• Boston Dynamics retires its hydraulic humanoid robot Atlas
• Microsoft starts testing ads in the Windows 11 Start menu
• Apple warns of iPhone 'mercenary spyware attack' across 92 countries
• Broadband 'nutrition labels' kick in, revealing hidden fees for ISPs