PodParley PodParley
PodParley PodParley
Log in

Hunting for AI Bug Bounty

Episode 23 of the Microsoft Threat Intelligence Podcast podcast, hosted by Microsoft, titled "Hunting for AI Bug Bounty" was published on July 17, 2024 and runs 20 minutes.

July 17, 2024 ·20m · Microsoft Threat Intelligence Podcast

0:00 / 0:00

Summary

In this episode of the Microsoft Threat Intelligence Podcast host Sherrod DeGrippo is joined by Technical Program Manager at Microsoft Lynn Miyashita and Principal Research Manager, Andrew Paverd. They discuss the evolution of bug bounty programs into the realm of artificial intelligence, specifically focusing on Microsoft's initiative launched in October 2023. Lynn explains that the AI Bug Bounty incentivizes external security researchers to discover and report vulnerabilities in Microsoft's AI systems, such as Copilot, across various platforms including web browsers and mobile applications. Andrew elaborates on the concept of a "bug bar," which sets the criteria for vulnerabilities eligible for the program. They emphasize the importance of identifying security issues that could arise uniquely from AI systems, such as prompt injection vulnerabilities. The discussion highlights Microsoft's structured approach to handling reported vulnerabilities through their Security Response Center, emphasizing quick mitigation and coordination with researchers to ensure timely fixes and public disclosure.     In this episode you’ll learn:          How AI Bug Bounty programs are reshaping traditional security practices  Dangers of prompt injection attacks, and their capacity to exfiltrate sensitive data  Why you should engage in AI bug hunting and contribute to the evolving security landscape    Some questions we ask:         Which products are currently included in the Bug Bounty program?  Should traditional bug bounty hunters start doing AI bug bounty hunting?  How can someone get started with AI bug hunting and submitting to your program?      Resources:   View Lynn Miyashita on LinkedIn   View Andrew Paverd on LinkedIn   View Sherrod DeGrippo on LinkedIn     Microsoft AI Bug Bounty Program      Related Microsoft Podcasts:                    Afternoon Cyber Tea with Ann Johnson  The BlueHat Podcast  Uncovering Hidden Risks          Discover and follow other Microsoft podcasts at microsoft.com/podcasts     Get the latest threat intelligence insights and guidance at Microsoft Security Insider      The Microsoft Threat Intelligence Podcast is produced by Microsoft and distributed as part of N2K media network.

Episode Description

In this episode of the Microsoft Threat Intelligence Podcast host Sherrod DeGrippo is joined by Technical Program Manager at Microsoft Lynn Miyashita and Principal Research Manager, Andrew Paverd. They discuss the evolution of bug bounty programs into the realm of artificial intelligence, specifically focusing on Microsoft's initiative launched in October 2023. Lynn explains that the AI Bug Bounty incentivizes external security researchers to discover and report vulnerabilities in Microsoft's AI systems, such as Copilot, across various platforms including web browsers and mobile applications. Andrew elaborates on the concept of a "bug bar," which sets the criteria for vulnerabilities eligible for the program. They emphasize the importance of identifying security issues that could arise uniquely from AI systems, such as prompt injection vulnerabilities. The discussion highlights Microsoft's structured approach to handling reported vulnerabilities through their Security Response Center, emphasizing quick mitigation and coordination with researchers to ensure timely fixes and public disclosure.     In this episode you’ll learn:          How AI Bug Bounty programs are reshaping traditional security practices  Dangers of prompt injection attacks, and their capacity to exfiltrate sensitive data  Why you should engage in AI bug hunting and contribute to the evolving security landscape    Some questions we ask:         Which products are currently included in the Bug Bounty program?  Should traditional bug bounty hunters start doing AI bug bounty hunting?  How can someone get started with AI bug hunting and submitting to your program?      Resources:   View Lynn Miyashita on LinkedIn   View Andrew Paverd on LinkedIn   View Sherrod DeGrippo on LinkedIn     Microsoft AI Bug Bounty Program      Related Microsoft Podcasts:                    Afternoon Cyber Tea with Ann Johnson  The BlueHat Podcast  Uncovering Hidden Risks          Discover and follow other Microsoft podcasts at microsoft.com/podcasts     Get the latest threat intelligence insights and guidance at Microsoft Security Insider      The Microsoft Threat Intelligence Podcast is produced by Microsoft and distributed as part of N2K media network.

Share this episode

Similar Episodes

Build AI Agents by Voice, Not Workflows

Apr 8, 2026 ·27m

#64 KI auf der Nase - Sind Smart Glasses der nächste große Gamechanger(?) | mit Sabrina Göttlinger

Apr 7, 2026 ·38m

The AI Coding Reckoning: What Breaks First?

Apr 5, 2026 ·35m

Build AI Agents Overnight: Prompt-to-Prototype

Apr 1, 2026 ·29m

Copilot Chaos: A Simple Map of Microsoft's AI

Mar 30, 2026 ·28m

AI Adoption Isn’t IT: Exec Alignment Comes First

Mar 29, 2026 ·31m

Similar Podcasts

Microsoft Innovation Podcast Mark Smith [nz365guy] If you want to get your ideas or questions featured on an episode, please leave us a voicemail: https://www.microsoftinnovationpodcast.com/voicemail/Dive into the future of work with the "Microsoft Innovation Podcast," exploring the intersection of People, Business, Technology, and AI.  Engage with expert guests—including thought leaders from Microsoft, industry innovators, and community specialists—who are redefining the world with advancements in AI, Cloud technologies, the Power Platform, Dynamics 365, and beyond.Every episode delivers a blend of in-depth discussions, practical insights, and actionable strategies tailored for professionals driving enablement and innovation. Join us across our six shows:The Power Platform ShowThe MVP ShowThe Copilot ShowThe Ecosystems ShowThe AI AdvantageThe AI Unfilter The Microsoft Innovative Expert Spotlight Series Podcast Jeffrey Bradbury Welcome to the Microsoft Innovative Educator (MIE) Spotlight Series Podcast. If you are an educator looking to learn how to leverage the power of innovative teaching with technology in your classroom, this is the podcast for you. Each episode of the MIE Spotlight Series features a dynamic teacher, a Microsoft Innovative Educator, showcasing how they are transforming their classrooms through creative lessons and 21st century teaching styles. This podcast is hosted by educator Jeff Bradbury from the TeacherCast Educational Network and brought to you by Microsoft in Education. Tech Directions EY Microsoft Welcome to the EY Microsoft Tech Directions podcast series – your briefing on the biggest technology trends and how they will help organizations build a better working world. We investigate the benefits of technologies and discuss how they herald a new era of improved customer, employee and stakeholder experiences, while also increasing return on investment for shareholders. In each podcast we’ll reveal how EY and Microsoft can help companies digitally transform by applying their considerable experience and innovative technologies. Mas Cara Download Microsoft Windows 11
URL copied to clipboard!