Security News > 2021 > March > Microsoft Offers Up to $30,000 for Vulnerabilities in Teams Desktop Client
Microsoft on Wednesday announced that its bug bounty programs now also cover the desktop client of its Teams business communications platform.
The tech giant is offering rewards for vulnerabilities in the Teams desktop client as part of its Application Bounty Program, which will feature additional app-related bounties in the future.
The Teams desktop client bug bounty program complements the existing awards for vulnerabilities in online Teams services.
Microsoft says researchers can earn between $500 and $15,000 for general vulnerabilities in the Teams desktop client, and between $6,000 and $30,000 if they demonstrate an exploit that fits one of five scenarios.
White hat hackers can earn up to $30,000 for remote code execution with no user interaction, and $15,000 for the ability to obtain authentication credentials for other users without leveraging phishing attacks.
Microsoft reported in August 2020 that it had paid out nearly $14 million through its bug bounty programs in the past year.
News URL
Related news
- Microsoft Teams tactics, malware connect Black Basta, Cactus ransomware (source)
- Microsoft replacing Remote Desktop app with Windows App in May (source)
- Microsoft: Recent Windows updates cause Remote Desktop issues (source)
- Microsoft fixes Remote Desktop issues caused by Windows updates (source)
- Patch Tuesday: Microsoft Fixes 134 Vulnerabilities, Including 1 Zero-Day (source)
- Microsoft vulnerabilities: What’s improved, what’s at risk (source)
- Microsoft fixes Remote Desktop freezes caused by Windows updates (source)
- Microsoft now pays up to $30,000 for some AI vulnerabilities (source)
- Oh, cool. Microsoft melts bug that froze Server 2025 Remote Desktop sessions (source)