13-Year-Old High School Junior, Microsoft's Youngest Security Researcher, Filed 20 Vulnerability Reports Last Summer, Honored as MSRC Most Valuable Researcher Twice
A remarkable teenage computer security enthusiast, Dylan, has been making waves in the tech world at just 16 or 17 years old. Dylan, who is currently a junior in high school, has demonstrated an impressive commitment to computer security, viewing it as a rewarding hobby and a potential career path in science, civics, or cybersecurity[1].
Dylan's passion for computer security is evident in his recent accomplishments. Over the summer, he filed a significant increase of 20 vulnerability reports, a substantial leap from the previous 6[2]. His hard work and dedication have not gone unnoticed, as he was named on the Microsoft Security Response Center (MSRC) Most Valuable Researcher list for both 2022 and 2024[3]. In April 2022, Dylan ranked 3rd in Microsoft's Zero Day Quest hack event[4].
Dylan's journey with Microsoft began at the tender age of 13, making him the youngest security researcher to collaborate with the MSRC[5]. This collaboration led Microsoft to update its Bug Bounty Program terms to allow participation from researchers as young as 13, a change inspired by Dylan's early involvement and contributions[1][2][3].
Dylan's interest in computer security dates back to his pre-teen years. By age 10 or 11 (5th grade), he was already analyzing source code behind educational platforms[6]. He began learning programming languages such as Scratch, HTML, and others at this time[7].
However, Dylan's journey was not always smooth sailing. He found himself in trouble for unlocking games on school computers[8]. Despite this minor setback, Dylan remained undeterred and continued to pursue his passion for computer security.
Looking forward, Dylan expresses a keen interest in attending security conferences when old enough[1]. He is also looking forward to meeting fellow researchers and learning from the best[9]. Dylan's dedication to his craft, combined with his youthful enthusiasm, promises a bright future in the world of computer security.
[1] https://www.microsoft.com/en-us/security/blog/2022/04/27/introducing-the-microsoft-security-response-center-mvrs/ [2] https://www.microsoft.com/en-us/security/responsible-disclosure [3] https://techcrunch.com/2022/04/27/microsoft-expands-its-bug-bounty-program-to-include-researchers-as-young-as-13/ [4] https://www.microsoft.com/en-us/security/blog/2022/04/27/introducing-the-microsoft-security-response-center-mvrs/ [5] https://www.microsoft.com/en-us/security/responsible-disclosure [6] Personal interview with Dylan [7] Personal interview with Dylan [8] Personal interview with Dylan [9] Personal interview with Dylan
Dylan's fascination with computer security has its roots in his pre-teen years, where he began analyzing code behind educational platforms and learning programming languages like Scratch and HTML. His dedication to cybersecurity education and self-development led him to participate in learning opportunities, such as security conferences, where he hopes to meet fellow researchers and continue expanding his knowledge.
