New Dynamics 365 Bounty Program (by MSRC)

The new bounty program (by MSRC- Microsoft Security Response Center) has been divided into three different categories: Cloud Bounty Program, Microsoft Identity Bounty Program and Azure DevOps Bounty Programs.

Bounties will be awarded at Microsoft’s discretion based on the severity and impact of the vulnerability and the quality of the submission, and subject to the Microsoft Bounty Terms and Conditions. Qualified submissions are eligible for bounty rewards of $500 to $20,000 USD.  

Main Page Link


Send your complete submission to Microsoft using the MSRC submission portal and the bug submission guidelines. We request you follow the Coordinated Vulnerability Disclosure when reporting all vulnerabilities. We will exercise reasonable efforts to clarify indecipherable or incomplete submissions.    

… and sure, the program is also available for Microsoft Dynamics 365 Business Central.

17 July, 2019: Program launched.