Microsoft's Black Hat-like hacking event returns with bigger rewards.
Microsoft's hacking event, Zero Day Quest, is back and accepting nominations today until October 4th. This year there is up to $5 million in bounty awards, up $1 million on last year's figure. Microsoft is even offering multiplied bounty awards for the most critical issues in products like Azure, Copilot, and Microsoft 365. Security researchers will also get a chance to quality for a live hacking event at Microsoft's headquarters in spring 2026. Follow topics and authors from this story to see more like this in your personalized homepage feed and to receive email updates. Tom Warren Posts from this author will be added to your daily email digest and your homepage feed. See All by Tom Warren
Posts from this topic will be added to your daily email digest and your homepage feed. See All Microsoft
Posts from this topic will be added to your daily email digest and your homepage feed. See All News
Posts from this topic will be added to your daily email digest and your homepage feed. See All Security
Posts from this topic will be added to your daily email digest and your homepage feed.
See All Tech
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Business Insider
28 minutes ago
- Business Insider
GitHub CEO delivers stark message to developers: Embrace AI or get out.
This story is available exclusively to Business Insider subscribers. Become an Insider and start reading now. In an unambiguous message to the global developer community, GitHub CEO Thomas Dohmke warned that software engineers should either embrace AI or leave the profession. His candid statement, part of a blog post titled "Developers, Reinvented," underscores the dramatic transformation underway in software development, a shift not just in how code is written, but in the very nature of what it means to be a developer. The blog drew from interviews with 22 developers already deeply integrating AI into their workflows. Their experiences paint a clear picture: AI isn't a distant future, it's a present necessity. "Either you have to embrace the Al, or you get out of your career," Dohmke wrote, citing one of the developers who GitHub interviewed. This is the latest example of a strange marketing strategy by AI companies. Instead of selling products based on helpful features and letting users decide, executives often deploy scare tactics that essentially warn people they will become obsolete if they don't get on the AI bandwagon. For instance, Julia Liuson, another executive at Microsoft, which owns GitHub, recently warned employees that "using AI is no longer optional." From skeptics to strategists Dohmke said developers who initially dismissed tools such as GitHub Copilot as gimmicks now see them as indispensable collaborators. Through trial and error, these people have evolved from skeptics to AI strategists, learning to delegate coding tasks to AI agents and focusing their efforts on context design, prompt engineering, and verification, the CEO added. This is no marginal change. Developers at the leading edge of this transition report that their roles have shifted from writing code to architecting and auditing the code generated by AI. They speak of themselves not as coders, but as "code enablers" or even "creative directors of code," Dohmke wrote in his blog. Redefining developer value The CEO argued that this transformation does not diminish developers' value, but redefines it. Those who adopt AI tools early gain leverage, not redundancy. The blog highlights a major mindset shift: instead of optimizing solely for speed or efficiency, developers are using AI to raise the ambition of what's possible, Dohmke wrote, while noting that complex, large-scale refactoring tasks or multi-agent feature builds that once seemed out of reach are now achievable. Related stories Business Insider tells the innovative stories you want to know Business Insider tells the innovative stories you want to know This reframing comes with a career challenge: adapt or risk becoming obsolete. As AI rapidly advances toward automating up to 90% of code writing — a timeline developers estimate could arrive within just two to five years — the skills that will matter most include system design, AI fluency, delegation, and quality assurance, he predicted. "The software developer role is set on a path of significant change. Not everyone will want to make the change," the CEO wrote. "Managing agents to achieve outcomes may sound unfulfilling to many, although we argue that's what developers have been doing on a lower level of abstraction, managing their computers via programming languages to achieve outcomes." Humans are often reluctant to change, and Dohmke ended his blog by saying "that's okay." What's clear is that the CEO thinks these humans should seek another profession. Maybe plumbing?
Business Insider
28 minutes ago
- Business Insider
WAFs Can't Wait: Miggo WAF Copilot Defends Live Apps at the Speed of Exploits
Vulnerabilities don't come with a grace period anymore. The moment they're disclosed publicly or privately, they're already being scanned, exploited, and weaponized. According to the latest threat intelligence, critical flaws are often attacked within 15 minutes of disclosure. That puts security teams in an impossible situation: They can see the danger but can't patch fast enough to prevent damage. This is the high-stakes problem Miggo Security is solving with Miggo WAF Copilot, a first-of-its-kind solution that enables instant defense using the WAF you already have. 'Miggo WAF Copilot transforms the traditional WAF technology so that security teams can easily maximize their WAF to be a super-effective, proactive, and powerful mitigative control,' said Daniel Shechter, CEO and Co-founder of Miggo Security. Traditional WAFs Aren't Enough Web Application Firewalls were designed to be a frontline defense, but too often, they're deployed with generic rules that block known attacks, not emerging ones. They lack insight into application logic, and they're notoriously difficult to manage and tune, especially in fast-moving production environments. That's where Miggo WAF Copilot comes in. Instead of relying on static defenses, it adds intelligence, automation, and speed to the WAF. When a new vulnerability hits the radar, Copilot doesn't wait; it acts. Here's How It Works When a new vulnerability is detected, either through public disclosure, threat intel feeds, or internal alerts, Miggo WAF Copilot automatically begins scanning multiple data sources, including code repositories, known exploits, and security research. It then generates different payload variants to simulate how a real attacker might exploit the vulnerability. From there, the system performs a deep root cause analysis to determine exactly how the vulnerability can be triggered in the context of a live application. It uses this information to generate a precise WAF rule tailored to the specific vulnerability, not just the CVE. 'Miggo WAF Copilot delivers unmatched precision,' said Itai Goldman, Co-founder and CTO at Miggo Security. 'It doesn't just block broad attack patterns — it neutralizes the exact threat, keeping uptime and performance intact.' This precision instills confidence in the system's ability to protect your applications. The custom WAF rule generated by Miggo Copilot is first deployed in log mode, ensuring it doesn't impact legitimate traffic. Once validated, teams are notified that it's safe to activate full blocking mode. Miggo continues to monitor traffic, validate effectiveness, and recommend when to retire the rule once the vulnerability is fully patched, closing the remediation loop. The platform is compatible with leading WAF providers, including Cloudflare, AWS, Azure, GCP, Akamai, F5, Fortinet, and Imperva. That means security teams don't need to rip and replace anything. They just plug in Miggo WAF Copilot and instantly enhance their existing setup. From Passive Risk Awareness to Proactive Protection For years, security teams have been expected to defend modern applications with outdated, reactive tools. Now, they can turn their WAF into a smart, self-adapting security layer that acts the moment a threat emerges. With over 90% reduction in time to exposure, Miggo WAF Copilot brings production-grade protection online in minutes, not days. It's not just about blocking attacks, but also enabling security teams to operate at the speed of AI-driven threats. 'WAFs are powerful tools,' said Shechter. 'But they must evolve.' Miggo WAF Copilot is now available. Organizations ready to close the gap between vulnerability discovery and real protection can visit the Miggo website to learn more or request access.
Yahoo
an hour ago
- Yahoo
Two states are winning in the AI data center construction boom. Check out our map.
Big Tech's race toward a future built on AI is speeding up. On quarterly earnings calls with investors last week, Amazon, Microsoft, Google, and Meta all announced massive increases in their infrastructure spending plans for the year as the AI boom accelerates. Amazon signaled it will blow past its initial $100 billion capex target, Google announced a $10 billion capex hike, Meta increased its forecast slightly, and Microsoft also forecast a record $30 billion in capital spending for the current fiscal first quarter. Much of this massive investment will fuel the rush to build even more data centers. By Business Insider's count, companies had filed permits to build 311 data centers in the US as of 2010. By the end of 2024, that number had nearly quadrupled. Business Insider identified 1,240 data centers in America already built or approved for construction at the end of last year — the most comprehensive tally to date. Mapping these locations reveals two states where data center construction is particularly booming: Northern Virginia, with 329 data centers, and Maricopa County, Arizona, with 48. But new hot spots are emerging in places like the Central Ohio region or Sarpy, Nebraska. Amid the scramble to capitalize on the economic transformation promised by AI, cities and states give away millions in tax breaks to build data centers, with relatively few full-time jobs promised in return. In Ohio, tax breaks given to developers can amount over time to more than $2 million in tax savings for every permanent, full-time job at an operational data center, Business Insider's analysis found. And new local ordinances allow data centers to be built cheek-by-jowl with residential neighborhoods, leaving locals to live next to industrial complexes that operate 24/7. This unprecedented build-out comes at an extreme cost. The 322 data centers in Business Insider's count that are among the very largest data centers can consume as much power as a city and up to several million gallons of water a day. Collectively, Business Insider estimates that US data centers could soon consume more electricity than Poland, with a population of 36.6 million, used in 2023. Read the original article on Business Insider Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
