Season 4 Episode 6

Responsible Disclosure and Bug Bounty Programs: Webinar

Adam Logue

Adam Logue, Independent Security Researcher and Synack Red Teamer, discusses his experiences with responsible disclosure and bug bounty programs, and provides a fascinating technical deep dive into a vulnerability he found in Microsoft 365 Copilot during a client-facing engagement.

Timestamps:

00:49 – Adam’s background with responsible disclosure and bug bounty programs

04:33 – Description of M365 vulnerability

12:34 – Demo of the vulnerability

17:53 – How to pentest AI

20:45 – Getting started in pentesting

23:07 – Benefits of hacking with Synack

Listen to the Podcast

img:is([sizes=auto i],[sizes^="auto," i]){contain-intrinsic-size:3000px 1500px}img.wp-smiley,img.emoji{display:inline !important;border:none !important;box-shadow:none !important;height:1em !important;width:1em !important;margin:0 .07em !important;vertical-align:-.1em !important;background:none !important;padding:0 !important}.wp-block-button__link{color:#fff;background-color:#32373c;border-radius:9999px;box-shadow:none;text-decoration:none;padding:calc(.667em + 2px) calc(1.333em + 2px);font-size:1.125em}.wp-block-file__button{background:#32373c;color:#fff;text-decoration:none}.simple-banner{background:#016aff}.simple-banner .simple-banner-text{color:#fff}.simple-banner .simple-banner-text a{color:#fff}.simple-banner{z-index:99999}.simple-banner_2{background:#024985}.simple-banner_2 .simple-banner-text_2{color:#fff}.simple-banner_2 .simple-banner-text_2 a{color:#f16521}.simple-banner_2{z-index:99999}.simple-banner_3{background:#024985}.simple-banner_3 .simple-banner-text_3{color:#fff}.simple-banner_3 .simple-banner-text_3 a{color:#f16521}.simple-banner_3{z-index:99999}.simple-banner_4{background:#024985}.simple-banner_4 .simple-banner-text_4{color:#fff}.simple-banner_4 .simple-banner-text_4 a{color:#f16521}.simple-banner_4{z-index:99999}.simple-banner_5{background:#024985}.simple-banner_5 .simple-banner-text_5{color:#fff}.simple-banner_5 .simple-banner-text_5 a{color:#f16521}.simple-banner_5{z-index:99999}.page-id-23102 .media-text-block .text-block-content a{color:#016bff}.page-id-23102 .media-text-block .text-block-content a:hover{background-color:transparent}.home a.w-css-reset.w-css-reset-tree{display:none !important}.page-id-23409 .card-block-title-col h3 div{line-height:70px;font-size:60px;color:#1d5fc0}.page-template-default h3.title-32{font-size:26px !important}.single-vdp .vdp table tr td:first-of-type,.single-vdp .vdp table tr th:first-of-type{text-align:left;padding-left:15px}.single-vdp .vdp table td:last-of-type{text-align:left}.postid-23339 .vdp-hero.main-wrap-230,.postid-23339 .vdp-tabs-menu{background:linear-gradient(90deg,#ce0569 0%,#ff5800) !important}#hs-web-interactives-top-anchor{position:fixed !important}.organization-content{max-width:1000px;margin:auto}#acknowledgements tr th:last-of-type{text-align:left}.bottom-nav a.footer-nav-list-item-link.ot-sdk-show-settings{visibility:hidden}.bottom-nav a.footer-nav-list-item-link.ot-sdk-show-settings:before{visibility:visible;content:"My Privacy Choices";position:absolute}.bottom-nav a.footer-nav-list-item-link.ot-sdk-show-settings:after{visibility:visible;left:110px}@media (min-width:800px){.compare-table-top-row > .compare-top-item:first-child,.compare-features-row > .features-row-item:first-child{min-width:214px !important}}@media (max-width:1024px){.resource-center-page .blog-intro-section.blog-small-intro-section{padding-top:85px !important}.single-post .blog-content.text-block-content{padding-top:40px !important}.knowledge-base-template-default .blog-content-container.anim-fade-in{padding-top:50px}.blog-content-container.anim-fade-in{padding-top:40px !important}}@media only screen and (min-width: 1025px){.resource-info-page .resource-info-intro-outer .blog-intro-section.blog-small-intro-section .blog-intro-content-block{padding-top:5vw !important}.resource-info-page .resource-info-intro-outer .blog-intro-section.blog-small-intro-section{padding-top:9.97vw !important}.stands-block-inner{padding-top:7.6vw !important}}@media only screen and (min-width: 1025px){.round-link-btn{padding:20px 25px 13px}}@media only screen and (min-width: 1281px) and (max-width:1441px){.submenu-link-title-text{font-size:16px !important}}@media only screen and (min-width: 1441px) and (max-width:1600px){.submenu-link-title-text{font-size:18px !important}}.blog-content-main-holder--knowledge-base .knowledge-base-single-post__content h1 strong,.blog-content-main-holder--knowledge-base .knowledge-base-single-post__content h2 strong,.blog-content-main-holder--knowledge-base .knowledge-base-single-post__content h3 strong{color:#016bff;font-weight:400}.blog-content-main-holder--knowledge-base .knowledge-base-single-post__content h1{font-size:58px;padding-bottom:.5em;line-height:1.3}.blog-content-main-holder--knowledge-base .knowledge-base-single-post__content h2{font-size:48px;line-height:1.3}.blog-content-main-holder--knowledge-base .knowledge-base-single-post__content h3{font-size:40px;line-height:1.3}@media only screen and (max-width: 768px){.blog-content-main-holder--knowledge-base .knowledge-base-single-post__content h1{font-size:36px}.blog-content-main-holder--knowledge-base .knowledge-base-single-post__content h2{font-size:26px}.blog-content-main-holder--knowledge-base .knowledge-base-single-post__content h3{font-size:22px}}@media only screen and (min-width: 1025px){.title-96-150 strong{font-size:7.51vw !important;line-height:1.1em !important}.content-unit-grid.half-width div{flex:0 0 calc(50% - 20px);box-sizing:border-box}}.swiper-lazy-preloader{display:none}html.loading{margin-top:0 !important}.red-team-body div#total-wrap{padding-top:0}@media screen and (max-width: 767px){.testimonial-carousel .testimonial-block{display:flex;align-items:flex-start;flex-direction:column}.testimonial-carousel .quote-section{gap:10px !important;flex-direction:column}.testimonial-carousel .testimonial-image-placeholder{display:none}}@media screen and (max-width:1050px){header.header-scrolled.open-mobile-menu{backdrop-filter:unset;-webkit-backdrop-filter:unset}header.header-scrolled:has(.simple-banner) .header-nav-row{padding-top:85px}}.red-team-intro .round-link-btn.white-black{color:#000 !important;background-color:#fff !important;border:none !important}.red-team-intro .round-link-btn.white-black .link-btn-text{color:#000 !important}.red-team-intro .round-link-btn.white-black:hover{color:#fff !important;background-color:#000 !important}.red-team-intro .round-link-btn.white-black:hover .link-btn-text{color:#fff !important}

AI and human powered pentesting platform

AI AND HUMAN POWERED PENTESTING

AI and human powered pentesting

The Premier Security Testing Platform

SYNACK READ TEAM

AI AND HUMAN POWERED PENTESTING

Season 4 Episode 6

Responsible Disclosure and Bug Bounty Programs: Webinar