Education & Career News: Bug Bounty Hunter wins ₹ 22 lakh from Microsoft!

3 min read

Edition: July 2nd, 2021
Curated by the Knowledge Team of ICS Career GPS


Indian girl gets over Rs 22 Lakh bounty for spotting bug in Microsoft’s Azure Cloud System. (Image Source: India.com)

Article by Debashis Sarkar, published in Times of India

A 20-year-old self-taught cybersecurity analyst named Aditi Singh has won a Microsoft Azure bug bounty of $30,000 (roughly over Rs 22 lakh).

While she is waiting to receive the biggest bounty of her life, an elated Aditi shares that her parents have never been so proud of her and they finally feel she has “settled in her career”. 

She found an RCE (or Remote Code Execution) bug in Microsoft’s Azure cloud platform that comes with severe security impact. The details of the bug haven’t been revealed publicly yet.

Bug bounty hunting has been a trending career option for many aspiring techies across India. But Singh’s story is different and an inspiring one.

Like many school going kids, she also got enrolled in one of the private institutes in Kota after her 10th standard to prepare for IITs and medicals. However, soon she found out that she may fall behind in the race to crack competitive exams in India

“I joined an institute in Kota to prepare for medicals. I did not have any prior knowledge of computer science education and it has just been a year that I have started bug bounty hunting.”

Aditi Singh

After graduating from school, she enrolled for a BCA degree course at Indira Gandhi National Open University (IGNOU) and is also working as a cybersecurity analyst at MapMyIndia.

“I learnt about Javascript, MySQL and other programming languages by searching on Google and watching videos on YouTube. I also was interested in bug bounties and learned how to report them as well. It took around a year of dedicated efforts to learn about technicalities.”

Aditi Singh

Singh says she “hacked her way” to get the first job as a cybersecurity analyst after school.

While digging through several platforms, she found some vulnerabilities on MapMyIndia. She reached out to them and managed to get hired without even a graduation degree.

She says that it’s quite foolish to believe that you need a computer science degree to learn about programming and cybersecurity. There’s a lot of learning resources available online for free.

You don’t need to be an IITian for bug bounty. It is quite easy if you are smart enough to search the internet. If anyone wants to get into ethical hacking then they should start with Javascript or Python and later get a certificate course in ethical hacking.”

Aditi Singh, sharing a word of advice

(Disclaimer: The opinions expressed in the article mentioned above are those of the author(s). They do not purport to reflect the opinions or views of ICS Career GPS or its staff.)

Like this post? For more such helpful articles, click on the button below and subscribe FREE to our blog.




Download our mobile app, ICS Career GPS, a one-stop career guidance platform.

Leave a Reply