As artificial intelligence continues to trend thanks to its powers in content generation, software development, and replacing search engines, companies are cracking down on ways to patch vulnerabilities and make their AI tools safer. Following OpenAI’s bug bounty program announcement a couple of weeks ago, Microsoft has expanded its own to include the new Bing Chat.
A bug bounty program is aimed at security researchers and ethical hackers, who are welcome to find vulnerabilities within computer programs or websites in exchange for a reward. When one of these security researchers finds a problem, also known as a ‘bug’, they must report it in order to receive their bounty.
Microsoft continuously updates its bug bounty programs in an effort to create mutually successful partnerships with security researchers to improve services like .NET, Edge, Azure, and Identity; in August 2022, the company announced it had $13.7 million in bug bounties in that past fiscal year.
Anyone looking to cash in on the latest expansion of the bug bounty program for the new Bing must submit their detailed report through the general submission list and select Bing from the product list. Submissions must include the type of issue, the version that contains the bug, any updates they’ve installed, special configurations required to reproduce the bug, step-by-step instructions to reproduce the issue on a first install, proof or concept, and the impact of the issue, including how an attacker could exploit the issue.
Once submitted, Microsoft will determine if it’s qualified and engineers will review it and, if applicable, pay a bounty.
The new Bing Chat is Microsoft’s revamped, AI-powered search engine that runs a new chat format and image generator built on OpenAI’s GPT-4.
READ MORE HERE