The Ministry of Digital Development plans to unify and consolidate state payment rates within the framework of the Bug Bounty program (search for vulnerabilities in IT systems). This was reported by Kommersant with reference to the statement of the deputy director of the Ministry of Digital Development, Alexander Shoitov, at the SOC 2024 forum.
Author:
https://rb.ru/author/mihail-zelenin/
Subscribe to RB.RU on Telegram
The unification of rates, believes the vice minister, will allow the program to be expanded to all federal and regional authorities and “normalize” the interaction of “white hackers” with the State. The official emphasized that many government agencies use similar programs, but it is necessary to introduce uniform government tariffs.
Future payments can be divided into two categories: for federal districts and for all-Russian services of the “State Services” model, says Luka Safonov, technical director of Garda WAF. The amounts can vary between 30,000 and 1 million rubles, depending on the danger of the vulnerability, he added.
The flip side of introducing tariffs could be a decline in the interest of “white hat hackers” in working on vulnerabilities in government services if payments are below market rates, said Igor Bederov, CEO of the Internet Search company.
In August, Vedomosti reported that the FSB, the Ministry of Internal Affairs and the Federation Council were discussing an initiative to create a state registry of “white hat hackers” with their subsequent certification. At the same time, in 2023, security officials opposed such a proposal, believing that hackers with malicious intent would resort to trial agreements to evade prosecution by law enforcement officials.
Author:
Mikhail Zelenin
Source: RB

I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.