Microsoft has awarded a $100,000 bounty for developing mitigation bypasses for Windows products. The company’s bounty program rolled out in June 2013, challenging coders and defenders to come up with mitigations. The bypasses are Windows version independent, software version independent and even CPU independent in some cases, the researcher says. Microsoft also awards the Blue Hat Bonus for Defense and previously, the Internet Explorer 11 Preview Bug Bounty, which paid out up to $11,000 for critical vulnerabilities in the beta version of IE 11.
Source: https://threatpost.com/latest-microsoft-100000-bounty-winner-bypasses-aslr-dep-mitigations/104328/