The Microsoft team is opening a new bounty program to detect vulnerabilities in the Bing chatbot.
As with the rest of the Microsoft rewards programs, those interested must meet a series of requirements to submit their report. We tell you the details.
Bing Chatbot Troubleshooting Bounty Program
A few weeks ago, the OpenAI team announced that it was opening a bounty program for finding vulnerabilities in its AI systems. And of course, among them, ChatGPT. Depending on the level of bug or risk reported, it would be the value of the reward.
And now Microsoft has taken a similar approach to improve the dynamics of the Bing chatbot. It is opening a bounty program to detect vulnerabilities and potential risks for AI, thus ensuring security and reliability.
A program that joins the rest of the proposals that Microsoft has for experts to present their suggestions or findings to improve their different products:
If your vulnerability report affects a product or service that is within the scope of one of our bounty programs below, you may receive a bounty according to the program descriptions. Even if you are not covered by an existing bounty program, we will publicly acknowledge your contributions when we fix the vulnerability.
How to participate in the Microsoft rewards program
Microsoft’s program offers rewards ranging from $500 to $15,000 depending on the impact of the vulnerability and the severity of the reported issue.
And to participate, it is only necessary to register on the Microsoft platform dedicated to reporting problems, and submit the corresponding report. Once the report reaches the Microsoft team, it goes through a series of stages.
First, it is verified that it meets the established requirements and the reported vulnerability is classified to the corresponding product engineering group. A case number is then assigned and vulnerability is assessed in different phases.
Meanwhile, the Microsoft team informs the user about the status of their report, either through the platform or by email, so they can follow up on their submitted report.
And of course, before sending the report it is recommended to take a look at the Terms and Conditions of the rewards program. This section details the requirements, who is eligible to participate, and how is the process for presenting the vulnerability found in the Microsoft product.