White hackers found 34 vulnerabilities on the Gosuslug portal
[ad_1]
“White hackers” found 34 vulnerabilities on the portal “Gosuslug” during the Bug Bounty program, most of which were with medium and low levels of criticality, informs Mintsifra.
More than 8,400 participants participated in the project to find vulnerabilities within three months. For small bugs, participants were awarded with gifts with the symbols of the project, and for critical vulnerabilities – with cash rewards.
The maximum payout for a bug was 350,000 rubles, and the minimum was 10,000 rubles. The average age of “white hackers” was 28 years, the minimum – 17 years, and the maximum – 55 years.
“The work of the researchers helped improve the security system of the State Services, but at the same time, the bughunters did not have access to internal data,” the Ministry of Digital Development said. “Participants worked only on the outer perimeter, and the vulnerabilities found were completely controlled by monitoring systems so that they could not be used for hacking.”
Since July 2022, the Ministry of Digital Development has been considering the possibility of introducing the concept of Bug Bounty (search for vulnerabilities by volunteers for a fee) into the legal field in order to legitimize the work of “white hat hackers”, including in state systems, Vedomosti wrote.
[ad_2]
Source link