Saturday August 30, 2008 7:39 AM AEST

SC Magazine Australia/NZ > News > Access Control > Smart Cards Tokens > Organisation offers $20,000 for Windows zero-day flaw

Vulnerability Alerts

SANS

Microsoft

Microsoft Security Advisory (951306): Vulnerability in Windows Could Allow Elevation of Privilege
MS07-050 - Critical: Vulnerability in Vector Markup Language Could Allow Remote Code Execution (938127) - Version:2.0

CERT/CC

Latest Comments

"You should hire people to fight trojans and stuff"

on Best Western falls victim to major hack

by Me | Aug 29, 2008 7:27 AM

"Not exactly an innovative feature Microsoft. Other browsers have had this capability for a long ..."

on IE 8 to sport traceless browsing

by Chris Jones | Aug 28, 2008 7:38 PM

"Hey"

on PGP Whole Disk Encryption 9.5

by Emilio Garcia | Aug 27, 2008 2:53 AM

"adfdas"

on HP WebInspect 7.7

by ddd | Aug 26, 2008 4:24 PM

"i have seen a few iPhone porn sites and while most of them are crap I did run across one that ..."

on iPhone porn on the up

by gate | Aug 23, 2008 6:30 AM

Smart Cards Tokens

Organisation offers $20,000 for Windows zero-day flaw

Digital Armaments will pay cash or credit to researchers who can prove and document zero-day flaws by midnight EST on Feb. 29, the group announced this month on its website.

Little information is available about the organization, which was founded in 2003 and “believes in information-sharing and proposes detailed analysis of cyberthreats and database-driven web applications,” according to its site.

During the flaw-acquisition process, Digital Armaments will make an offer for a zero-day vulnerability within five days of receiving the submission. The group will “eventually” notify the vulnerable product's vendor, and could release an advisory after the issue is patched, according to the group's website.

A Digital Armaments representative could not be reached for comment.

Digital Armaments is not the first organization to offer bounties for Windows security flaws. A year ago, VeriSign iDefense offered a total of US$48,000 -- US$8,000 apiece -- for the first six remotely exploitable flaws for Windows Vista and Internet Explorer 7.

Switzerland-based WabiSabiLabi launched an eBay-like marketplace last July designed to financially reward researchers while keeping sensitive information out of the hands of criminals.

Ads by Google

Thoughts on this article? Add a comment below.

Be the first to comment on this article.

Name:

Email:

(will not be displayed)

Comment:

(HTML not permitted)

Validation

Enter the code you see below:

Most Read
Most Discussed
Latest News

Access Control Whitepapers

Organisation offers $20,000 for Windows zero-day flaw

Sponsored Links

SC MAGAZINE SITEMAP

CATEGORIES

News

Alerts

Products

Stats

Blogs

Photo Galleries

Whitepapers

Events

Jobs

Downloads

Vulnerabilities & Exploits

Breaches & Exposures

Messaging

Mobile

Access Control

Biometrics & Forensics

Legal

Risk Management

Job Centre

Patch Management