The management of Russian Post is strengthening its cybersecurity efforts by launching a Bug Bounty program, which is designed for three years. In the near future, the state-owned company will announce a tender for testing the main IT systems.
Dmitry Ilyin, Deputy General Director of Russian Post for IT, explained that the main systems will be tested. Based on the results of the "white hat hackers", the company will develop additional measures to protect services. A company representative did not specify what funding was allocated for these purposes.
At the end of 2022, the media reported a data leak at Russian Post. The company confirmed this fact, emphasizing that the fraudsters did not gain access to the entire database.
Information security in Russia
Currently, State Duma deputies are discussing two draft laws concerning the work of "white hat hackers". The first should legalize the involvement of such specialists in testing IT infrastructure without the permission of copyright holders, the second concerns the procedure for organizing tests.
Experts believe that hackers will be interested in the offer from Russian Post. But for this, the company should offer specialists good bonuses for found vulnerabilities. Market participants say that three months of checks can cost up to 30 million rubles.
Earlier, the Ministry of Digital Development stated that they are attracting "white hat hackers" to test the main information platforms, including Gosuslugi, ESIA.
