Microsoft has introduced a new AI bug bounty program with a primary focus on the AI-powered Bing experience, offering rewards of up to $15,000. This program encourages security researchers from around the world to identify vulnerabilities within AI-powered Bing services and products, including bing.com, Microsoft Edge, Skype Mobile, and others.
The rewards range from $2,000 to $15,000, promoting a secure and robust AI-driven Bing environment. The initiative covers a wide range of areas to ensure the integrity and safety of the AI systems, reflecting Microsoft’s commitment to security.
In addition to highlighting the areas that fall within the program’s scope, Microsoft has also outlined various issues and vulnerability types that are considered out of scope, such as those that only affect attackers and certain model hallucination attacks. The company emphasizes its partnership with global security researchers through its bug bounty programs, which plays a crucial role in safeguarding customers from security threats. The expansion of the scope to include AI-powered Bing demonstrates Microsoft’s commitment to enhancing security and addressing potential vulnerabilities in its AI systems.
In a recent year-in-review blog post, Microsoft revealed that it paid $13.8 million in rewards to 345 security researchers worldwide who reported 1,180 vulnerabilities across 17 different bug bounty programs. The company continues to expand and strengthen its security efforts to protect its services and products effectively.