$10k Bounty for Critical Windows Flaws 138
An anonymous reader writes "iDefense, a Verisign company, is offering $10,000 to any researchers who find and report to it information on a previously unknown Windows flaw for which Microsoft later issues a "critical" advisory, according to a story over at Washingtonpost.com. Not really surprising, considering that Russian hacking groups are now paying thousands of dollars for exploits that attack unpatched holes in Windows. From the article: "Details of the flaw must be submitted exclusively to iDefense by March 31. There is no limit on the number of prizes that can be paid: if five researchers find and report five different Windows flaws for which Microsoft later issues critical advisories, all five will get paid...iDefense will change the focus of the challenge with each quarter -- the next challenge may focus on another vendor, or it may just center on particular class of vulnerabilities.""
Buy MSFT now (Score:5, Funny)
1. Design flawed OS
2. Wait for bounty on flaws
3. Submit flaws
4. Issue "critical" advisories on those flaws
5. Profit!!!
Mind you, if the bounty is for announced "patch" instead of "advisory", it will be almost impossible for BG to claim the prize.
Vista! (Score:5, Funny)
I could use an extra 10k (Score:3, Funny)
They're calling it... (Score:2, Funny)
Found it! (Score:5, Funny)
You may send the prize money to PO Box 3872, Moncton, NB, Canada
In the words of Dilbert (Score:5, Funny)
Some Vista developer is saying to himself, "I'm gonna code me a minivan!"
http://religiousfreaks.com/ [religiousfreaks.com]Upcoming headline (Score:5, Funny)
Re:Vista! (Score:1, Funny)
Let's get the most obvious one out of the way (Score:2, Funny)
My prize may be donated to the Association for Smacking Stupid People Upside the Head.
Simpler plan for MS (Score:4, Funny)
Re:Buy MSFT now (Score:2, Funny)
On April 1st, iDefense will file for bankruptcy. Ha. Ha. "April Fools!"
I found a flaw!!! (Score:4, Funny)
I'll take my ten grand now. Oh wait, I found another one!!
explorer.exe
There's twenty grand you owe me now!
Remote holes in Linux distros (Score:2, Funny)
Mandrake
Slackware (IIRC)
So, is that $10,000 per instance...?