Skip to main content
  1. Home
  2. Computing
  3. News

Microsoft pays hacking expert a whopping $100,000 for spotting Windows security flaw

Trevor Mogg
By
microsoft headquarters
Image used with permission by copyright holder

If you thought Facebook’s recent $12,500 payout to ‘white hat’ hacker Arul Kumar was something to get excited about, think again. Microsoft just handed over almost 10 times that to an expert who found security vulnerabilities in the computer giant’s software.

Reuters is reporting it as one of the highest bounties yet awarded for such work.

Recommended Videos

The recipient of the payout is one James Forshaw, head of vulnerability research at London-based security consulting firm Context Information Security. The computer wizard was rewarded for discovering a new exploitation technique in Windows that will help the Redmond-based company shore up its security on multiple levels and “develop defenses against entire classes of attack,” Katie Moussouris, senior security strategist at the Microsoft Security Response Center, wrote in a blog post.

Related

Moussouris thanked Forshaw and five others “on behalf of over a billion customers” for their contributions to the company’s bounty program which since June has invited researchers to inform it of vulnerabilities in Microsoft software.

Forshaw is already known to the company – the computer giant recently paid him a more modest $9,400 for bringing attention to several vulnerabilities in a preview release of Internet Explorer 11.

According to a Black Hat profile of the consultant, Forshaw has been “involved with computer hardware and software security for almost 10 years with a skill set which covers the bread and butter of the security industry such as application testing, through to more bespoke product assessment, vulnerability analysis and exploitation.”

Financial rewards paid by tech companies to researchers for identifying security flaws have become an important part of software development.

Google, for example, has paid out almost $600,000 since 2010 to so-called ‘ethical’ hackers who’ve found security weaknesses in its online tools. Mozilla has handed out a similar amount, while Facebook runs a Bug Bounty program with cash payouts offered.

Editors' Recommendations

Topics
Trevor Mogg
Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
It’s time to stop believing these PC building myths
Hyte's Thicc Q60 all-in-one liquid cooler.

As far as hobbies go, PC hardware is neither the cheapest nor the easiest one to get into. That's precisely why you may often run into various misconceptions and myths.

These myths have been circulating for so long now that many accept them as a universal truth, even though they're anything but. Below, I'll walk you through some PC beliefs that have been debunked over and over, and, yet, are still prevalent.
Liquid cooling is high-maintenance (and scary)

Read more
AMD’s next-gen CPUs are much closer than we thought
AMD Ryzen 7 7800X3D held between fingertips.

We already knew that AMD would launch its Zen 5 CPUs this year, but recent motherboard updates hint that a release is imminent. Both MSI and Asus have released updates for their 600-series motherboards that explicitly add support for "next-generation AMD Ryzen processors," setting the stage for AMD's next-gen CPUs.

This saga started a few days ago when hardware leaker 9550pro spotted an MSI BIOS update, which they shared on X (formerly Twitter). Since then, Asus has followed suit with BIOS updates of its own featuring a new AMD Generic Encapsulated Software Architecture (AGESA) -- the firmware responsible for starting the CPU -- that brings support for next-gen CPUs (spotted by VideoCardz).

Read more
AMD Zen 5: Everything we know about AMD’s next-gen CPUs
The AMD Ryzen 5 8600G APU installed in a motherboard.

AMD Zen 5 is the next-generation Ryzen CPU architecture for Team Red and is slated for a launch sometime in 2024. We've been hearing tantalizing rumors for a while now and promises of big leaps in performance. In short, Zen 5 could be very exciting indeed.

We don't have all the details, but what we're hearing is very promising. Here's what we know about Zen 5 so far.
Zen 5 release date and availability
AMD confirmed in January 2024 that it was on track to launch Zen 5 sometime in the "second half of the year." Considering the launch of Zen 4 was in September 2022, we would expect to see Zen 5 desktop processors debut around the same timeframe, possibly with an announcement in the summer at Computex.

Read more