Microsoft has announced an increase in bug bounty payouts for AI-related vulnerabilities, with rewards now reaching up to $30,000. The newly expanded program covers AI vulnerabilities found in Dynamics 365 and Power Platform products and services.
Dynamics 365 is a set of business applications that connects customers, products, people, and operations, while the Power Platform helps organizations analyze data and automate processes.
The company is specifically looking for reports on issues such as inference manipulation, model manipulation, and inferential information disclosure. To qualify for the higher payouts, the vulnerabilities must be classified as Critical or Important in severity, based on Microsoft’s AI vulnerability classification system. Submissions also need to be reproducible on services listed as in-scope by Microsoft.
The standard range for AI bounty awards starts at $6,000 and goes up to $30,000, though higher rewards may be considered depending on the quality and impact of the submission. Microsoft emphasized that the program is open to both individuals and organizations willing to report security issues in targeted applications.
This new development is part of Microsoft’s broader efforts to strengthen AI and cloud security. Earlier this year, Microsoft increased the payouts for moderate-severity vulnerabilities in its Copilot AI tools.
With AI playing a bigger role in everyday tools and services, Microsoftโs updated bug bounty program is a step toward making these systems safer. By supporting more research, the company aims to stay ahead of potential security risks.
About the author:
