A new bug bounty program sponsored by Microsoft and Facebook will reward security researchers for finding and reporting vulnerabilities in widely used software that have the potential to affect a large number of Internet users. The program will be run by a panel of researchers from Facebook, Google, Microsoft, and several other companies who helped manage or participated in other security bounty programs over the years.