Microsoft launches Xbox bounty program: rewards up to $20,000

Microsoft Security Response Center (MSRC) announced the launch of the vulnerability reward program for the Xbox gaming platform, the program is aimed at Xbox Live network services, the reward in $500 to $20,000. According to reports, Xbox Bounty plans to invite gamers, security researchers, and others around the world to help identify security flaws in the Xbox Live network and services, so whether you’re an amateur gamer or a security expert, you can join Xbox bounty program.

Microsoft will award bounty based on the severity and impact of the vulnerability and the quality of the submission. According to Brown, a project manager at the Microsoft Security Response Center (MSRC), a vulnerability disclosure plan must be clear in concept (POC) and concisely documented. More specifically, the vulnerability bounty program participants need to demonstrate the impact of the vulnerability through a POC and allow the Xbox team to fix the vulnerability after the reported issue.

The bug bounty program will cover the cloud back-end infrastructure of Xbox Live, and the specific rewards will be measured according to the following table: