Good news! The US-based tech giant Microsoft has announced an AI bug bounty programme to discover vulnerabilities in the new AI-powered Bing services and related apps, offering rewards up to $15000 (around Rs 12,51,347).
The programme is to encourage researchers around the world to find vulnerabilities within the Bing chatbot and AI integrations.
“The Microsoft AI bounty programme invites security researchers from across the globe to discover vulnerabilities in the new, innovative, AI-powered Bing experience. Qualified submissions are eligible for bounty rewards from $2,000 to $15,000,” Microsoft wrote in a blogpost.
The program is open to all security researchers, regardless of experience or location. Researchers can submit their findings through the Microsoft Security Research Center (MSRC) portal.
Vulnerabilities submitted in the following Product(s) are eligible under this bounty program:
– AI-powered Bing experiences on bing.com in Browser (All major vendors are supported, including Bing Chat, Bing Chat for Enterprise, and Bing Image Creator)
– AI-powered Bing integration in Microsoft Edge (Windows), including Bing Chat for Enterprise
– AI-powered Bing integration in the Microsoft Start Application (iOS and Android)
– AI-powered Bing integration in the Skype Mobile Application (iOS and Android)
Any vulnerabilities found in these integrations are qualified for submission and are eligible to win a reward.
The company also shared the eligibility criteria for bug submissions. To qualify for a bounty, developers must report a bug that is new to Microsoft.
Such vulnerability must be critical or important severity as defined by the “Microsoft Vulnerability Severity Classification for AI Systems” and reproducible on the latest, fully patched version of the product or service.
They must also provide specific steps to recreate the bug. Applicants must be at least 14 years old and have permission from a legal guardian if they are minors.
The company also said that the “goal of the AI bounty programme is to uncover significant vulnerabilities in the new, innovative, AI-powered Bing experience that have a direct and demonstrable impact on the security of our customers”.