Nepali Youth rewarded for discovering RCE vulnerability in Edge browser

Pankaj Thakur, an ethical hacker from Nepal, has been rewarded USD 40,000 for reporting a bug in Microsoft’s native web browser. He discovered a Remote Code Execution (RCE) vulnerability in the Microsoft Edge browser. And it’s not the first time – Thakur has previously received bounties from Apple, Google, BBC, BMW, and others for discovering bugs in their platforms.

Microsoft Edge RCE vulnerability:

Pankaj, who earned his cybersecurity degree in Hyderabad, is passionate about RCE. After three hours of relentless work, he was eventually able to discover the Render Process RCE vulnerability in the Edge browser.

He says, “We often use Edge browser in Windows. Through this, I was able to access the Windows system event log or Shell. I started writing commands after having accessed someone else’s Shell. The results began to appear on my screen. This (particular bug) would have allowed hackers to access any data saved in the Edge browser, so I reported it”.

What is RCE?

Remote code execution (RCE) is a type of software security flaw/vulnerability. RCE flaws allow a malicious actor to execute whatever code they want on a remote system over LAN, WAN, or the internet. Further, it allows attackers to take over a computer or a server by running arbitrary malicious software (malware).

One of the well-known RCE Vulnerabilities is Wannacry. The ransomware affected hundreds of thousands of users worldwide in May 2017. The malware would encrypt computer files, lockout computer users, and ask for ransom payments in exchange for decryption.

As the internet continues to grow and become more accessible, the effect of RCE vulnerabilities will grow with it.

Edge Chromium Bounty

Pankaj Thakur Bug Bounty From Microsoft

Microsoft chose to award Pankaj with USD 40,000 under the Edge Chromium Bounty program after he reported the bug. Previously, he received a USD 20,000 prize from a firm headquartered in the Netherlands.

  • Meanwhile, check out our camera comparison of IQOO 7 vs Realme X7 Max vs Mi 11X.


Source link

Rabins Sharma Lamichhane

Rabins Sharma Lamichhane is the owner of RabinsXP who is constantly working for increasing the Internet of Things (IoT) in Nepal. He also builds android apps and crafts beautiful websites. He is also working with various social services. The main aim of Lamichhane is to digitally empower the citizens of Nepal and make the world spiritually sound better both in terms of technology and personal development. Rabins is also the first initiator of Digital Nepal.

Related Articles

Leave a Reply

Your email address will not be published.

Back to top button

Adblock Detected

Please disable Adblock to have a smooth experience.