Skip to main content

You can make up to $30,000 by spotting issues in Microsoft Teams

Microsoft Teams Note20 On Keyboard
Microsoft Teams Note20 On Keyboard (Image credit: Dan Thorp-Lancaster / Windows Central)

What you need to know

  • Microsoft announced a bounty awards program for Microsoft Teams.
  • The program can pay out up to $30,000 for certain issues.
  • Microsoft is mostly looking for security and vulnerability issues within Teams.

Microsoft has utilized bug bounty programs for years to help find issues with its software. The concept is pretty straightforward. If you spot an issue that qualifies as big enough for Microsoft to care about, you can get paid. The new Microsoft Applications Bounty Program (opens in new tab) extends that concept to specific apps from Microsoft. Microsoft Teams is the first in-scope application that's part of the new program.

Depending on the issue that you discover, you could make up to $30,000. Microsoft outlines two areas that are part of the program in a blog post (opens in new tab) and clarifies other details:

  • Scenario-Based Bounty Awards: This new program includes 5 scenario-based awards for vulnerabilities that have the highest potential impact on customer privacy and security. Rewards for these scenarios range from $6,000 to $30,000 USD.
  • General Bounty Awards: In addition, we offer bounty awards for other valid vulnerability reports for the Teams desktop client that do not qualify for the scenario-based awards. Rewards for these reports range from $500 to $15,000 USD.
  • Teams Online: Submissions for Teams online services will continue to be awarded under the Online Services Bounty Program (opens in new tab).
  • Researcher Recognition Program Points: Valid reports for Microsoft Teams research are now eligible for a 2x bonus multiplier under the Researcher Recognition Program (opens in new tab). Points earned contribute toward your eligibility for the annual MSRC Most Valuable Security Researcher list (opens in new tab).

It appears that Microsoft is focusing on security and vulnerability issues for its bounty program.

Sean Endicott
Sean Endicott

Sean Endicott is the news writer for Windows Central. If it runs Windows, is made by Microsoft, or has anything to do with either, he's on it. Sean's been with Windows Central since 2017 and is also our resident app expert. If you have a news tip or an app to review, hit him up at sean.endicott@futurenet.com.

1 Comment
  • Can I get some back pay on this? I've been giving them free advice for years.