Wiz Launches $4.5M Zeroday.Cloud Bug Bounty Competition
Wiz, in collaboration with tech giants AWS, Google Cloud, and Microsoft, has launched the Zeroday.Cloud bug bounty competition. This event offers a total of $4.5 million in prizes for discovering vulnerabilities in popular cloud software.
The competition is split into six categories, each with varying prize amounts based on the severity and type of vulnerability found. Participants must submit their findings by December 1 and present their exploits live at the Black Hat Europe conference in London on December 10 and 11.
Nir Ohfeld, head of security research at Wiz, stresses that submitted exploits should lead to a full compromise of the target. Wiz's recent acquisition by Google for $32 billion has brought significant attention to the competition.
However, the competition has faced criticism. AccuKnox, a company specializing in runtime protection, has questioned Wiz's limited runtime protection compared to specialized vendors. Trend Micro has also accused Wiz of copying parts of the rules from its own Pwn2Own competition.
Despite the controversy, the Zeroday.Cloud bug bounty competition offers a substantial prize pool and the chance for participants to showcase their skills at the prestigious Black Hat Europe conference. The competition's outcome may provide valuable insights into the security of popular cloud software.
