Microsoft has increased its bug bounty rewards for AI-related vulnerabilities in Dynamics 365 and Power Platform to as much as $30,000.
The company is encouraging security researchers to identify and report critical issues such as inference manipulation, model manipulation, and inferential information disclosure in its AI-powered business applications.
Power Platform is a suite of tools designed for data analysis and process automation, while Dynamics 365 connects various business operations, including customers, products, and teams. Eligible submissions under the AI bounty program must meet Microsoft’s Critical or Important severity criteria and be reproducible on in-scope services.
“Qualified submissions are eligible for bounty rewards of $500 to $30,000 USD,” Microsoft stated. The final payout depends on the severity, impact, and quality of the submission, with even higher rewards possible for significant findings.
This move follows Microsoft’s continued investment in security research. During last year’s Zero Day Quest hacking event, the company paid over $1.6 million to researchers for more than 600 vulnerabilities. Nearly 100 researchers also took part in training sessions with Microsoft’s AI Red Team, focused on AI bug hunting and other advanced security topics.
Earlier this year, Microsoft also increased payouts for Copilot AI vulnerabilities, offering a 100% award multiplier to encourage deeper AI research.
