Overview
- At age 13, Dylan responsibly reported a Microsoft Teams vulnerability that enabled group takeovers, marking his entry into collaboration with MSRC.
- His disclosures prompted Microsoft to lower its Bug Bounty Program age limit to 13 and to expand its scope to include Authenticator Broker vulnerabilities.
- Last summer he filed 20 vulnerability reports, a significant increase from his previous total of six submissions.
- In April, Dylan secured third place at Microsoft’s Zero Day Quest in Redmond, ranking among the event’s top global researchers.
- He maintains a prolific research output while managing coursework, Science Olympiad, math competitions, music and sports.