Skip to main content

Bounty Hunters: The Honor Roll

The following researchers have submitted a qualifying vulnerability or new mitigation bypass techniques to Microsoft as part of the Microsoft Security Response Center (MSRC) Bounty Programs. We thank them greatly for their participation and for working with us to help keep customers safe.

Please send vulnerability reports or questions about the Microsoft Bounty Programs to

Total bounties paid to date: Over $300,000.00

Mitigation Bypass

James Forshaw (@tiraniddo) Context Security$100,0002013
Fermin J. Serna(@fjserna) Google, Inc$25,0002013
Yu Yang (@tombkeeper) NSFOCUS Security Labs$100,0002013

Online Services

NameLinkVulnerabilities FoundMonth-Year
Darius Petrescu 1October 2014
Adi Ivascu 1September 2014
Mathias Karlsson http://avlidienbrunn.se1September 2014
Stephen Sclafani 3September 2014

Internet Explorer 11 Preview (PROGRAM CLOSED)

NameCompanyVulnerabilities FoundAmount AwardedDonation to CharityYear
James Forshaw (@tiraniddo) Context Security4$4,400
* Received $5,000 bonus for finding cool IE design vulnerabilities
Fermin J. Serna(@fjserna) Google, Inc1$500100% to Save the Seattle Humane Society2013
Jose Antonio Vazquez Gonzalez Yenteasy - Security Research5$5,500$1,100 to World Food Program USA2013
Ivan Fratric Google, Inc. Security Team1$1,100100% to Save the Children Fund2013
Masato Kinugawa 2$2,200 2013
Peter Vreugdenhil Exodus Intelligence1*Tier 1 2013

Want to know more?

BlueHat Archive

See past BlueHat Sessions

BlueHat v12

BlueHat v11

BlueHat v10