@msftsecurity changed the scope of the Windows Insider Preview to exlcude path redirection and race condition memory attacks.pic.twitter.com/CVoQvIcV6N
Show this thread
-
Thoughts?
@jonasLyk@galdeleon@tiraniddo@SandboxBear@itm4nShow this thread
I think it is embarrassing and sends a signal that Windows is so insecure paying bounties would ruin Microsoft. I am also very sad I have to give up on my dream profession as a bounty hunter. It was already economically almost impossible due to slow responses, slow patches.
-
-
Weird merging of bugs and paying only the lowest valued submission. Misclassifications and walls of silence when complaining. I still love bug hunting and I will of course drop them on twitter now.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Well I've no idea why they've stopped, I'd like to believe it's some new mitigation coming and they're being nice. Still I'm not sure it send any sort of signal, bug bounties shouldn't be a proxy for security. I'm sure
@k8em0 could no doubt make the point better than me :-) -
Then why mem corruptions in COM? Doubt they got incoming mitigation for that... it matches pretty much all the weakest points in Windows security.
- Show replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.