Microsoft offers a huge cash reward to stop the next Meltdown or Spectre

News
By
published

Wanted: Dead or alive

Meltdown and Spectre

Microsoft is looking to stamp out future major bugs along the lines of Spectre, with the company offering big money to hunt down these sort of flaws.

Microsoft’s new bug bounty program is specifically for ‘speculative execution side channel vulnerabilities’ like Spectre and Meltdown which affected Intel chips, as well as AMD and ARM processors in the case of the former.

The software giant observed that these represented a new class of vulnerabilities, and a major change in the threat environment, to which its reaction is this new program which will pay up to $250,000 (about £180,000, AU$320,000) for those who discover and disclose such bugs to Microsoft.

The top tier payment of up to $250,000 will be made for the discovery of entirely new categories of speculative execution attacks, with Microsoft paying up to $200,000 (about £145,000, AU$255,000) for the discovery of methods of bypassing Windows’ defenses against existing speculative execution flaws.

Those who find new spins on known speculative execution vulnerabilities with Windows 10 or Microsoft’s Edge browser will be able to bag a reward of up to $25,000 (about £18,000, AU$32,000).

How to protect against Spectre and Meltdown

Meltdown and Spectre

For the latest on how to protect yourself from Spectre and Meltdown, read our comprehensive guide.

Joint effort

Naturally, the hope is that Microsoft will be able to use such early warnings to concoct a fix before any possible vulnerability becomes public. The firm says it will share any findings and research with other affected companies to collaborate on fixes, because “speculative execution side channel vulnerabilities require an industry response”.

Of course, when it came to Spectre and Meltdown, despite collaboration beginning a good half-year before these holes became public knowledge, patching has still been a very haphazard affair. Indeed, fixes for many affected Intel CPUs still haven’t gone live.

Hopefully lessons will have been learned when it comes to future responses to any vulnerability of this category. But clearly, this is a positive step forward by Microsoft, although not an unsurprising one given the seriousness and potential impact of these sort of flaws, as we’ve seen this year.

Via The Inquirer

Darren Allan

Darren is a freelancer writing news and features for TechRadar (and occasionally T3) across a broad range of computing topics including CPUs, GPUs, various other hardware, VPNs, antivirus and more. He has written about tech for the best part of three decades, and writes books in his spare time (his debut novel - 'I Know What You Did Last Supper' - was published by Hachette UK in 2013).

Latest in Tech
The Apple MacBook Air next to the Dyson Supersonic R and new AMD GPU
ICYMI: the week's 7 biggest tech stories from the best tech at MWC to Apple's new iPads and MacBooks
The best tech of MWC 2025 examples, including the Nothing Phone 3a Pro, the Nubia Flip 2, and the Lenovo Solar PC
Best of MWC 2025: the 10 top tech launches we tried on the show floor
Toy Fair 2025 Primal Hatch
The 7 best toys we saw at Toy Fair 2025, from a Lego boat to a hatching, robotic dinosaur
ICYMI
ICYMI: the 7 biggest tech stories of the week, from a next-gen Alexa to the new iPhone 16e
A triptych image featuring the Beats Powerbeats Pro 2, iPhone 16e and Amazon Echo Show 21.
5 hottest tech reviews of the week: the gorgeous, affordable iPhone 16e and Amazon's epic 21-inch Echo Show
Apple Airtag four pack on orange background with lowest price sign
The Apple AirTags are now even cheaper than Black Friday thanks to a surprise price cut at Amazon
Latest in News
Apple iPhone 16 Review
Three iPhone 17 model dummy units appear in a hands-on video leak
The Samsung Galaxy S25 Edge on display the January 22, 2025 Galaxy Unpacked event.
New Samsung Galaxy S25 Edge may have revealed some key details – including its price
Quordle on a smartphone held in a hand
Quordle hints and answers for Sunday, March 9 (game #1140)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Sunday, March 9 (game #371)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Sunday, March 9 (game #637)
WhatsApp
WhatsApp just made its AI impossible to avoid – but at least you can turn it off
More about tech
The Apple MacBook Air next to the Dyson Supersonic R and new AMD GPU

ICYMI: the week's 7 biggest tech stories from the best tech at MWC to Apple's new iPads and MacBooks
The best tech of MWC 2025 examples, including the Nothing Phone 3a Pro, the Nubia Flip 2, and the Lenovo Solar PC

Best of MWC 2025: the 10 top tech launches we tried on the show floor
Samsung TVs

Samsung has a massive spring TV sale: shop record-low prices on 4K, QLED and OLED TVs
See more latest
Most Popular
Orange servers and networks
Alibaba doubles down on RISC-V architecture with a new secretive 'server-grade' chip that will put AMD and Intel on alert
Apple iPhone 16 Review
Three iPhone 17 model dummy units appear in a hands-on video leak
Samsung Galaxy S25 Ultra HANDS ON
‘I don't see a space where the S Pen is not a key part of our portfolio’: Samsung executive defends the S Pen amid cancellation rumors
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Sunday, March 9 (game #371)
Quordle on a smartphone held in a hand
Quordle hints and answers for Sunday, March 9 (game #1140)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Sunday, March 9 (game #637)
Cunard Photo Book
Billions of cherished photos at risk; only a third of Americans back up their precious pics to the cloud
Getac B360 and B360 Pro rugged laptop
This extraordinary rugged laptop can take up to three batteries and three SSDs and even comes with an Nvidia GPU
The Samsung Galaxy S25 Edge on display the January 22, 2025 Galaxy Unpacked event.
New Samsung Galaxy S25 Edge may have revealed some key details – including its price
Google AI co-scientist overview
Scientists firmly in AI crosshairs as Google launches co-scientist scheme to accelerate scientific breakthroughs just days after another similar project