Microsoft announced its own limited vulnerability rewards program in June. The company pays $100,000 for novel means of bypassing security measures in Windows 8.1 and $11,000 in Internet Explorer 11.1. Microsoft’s adoption of a bug bounty program and research from the University of California at Berkeley shows such programs are more cost-effective than internal researchers. As the programs mature, any deluge of vulnerabilities will settle down to a trickle, says Brian Gorenc, manager of the Zero Day Initiative.”]