The State Duma has adopted in the first reading a bill that allows computer program testers to check them for vulnerabilities without having to obtain consent from developers. This step is designed to strengthen the information security of Russian companies and simplify the work of so-called "white hat" hackers — specialists in identifying weaknesses in software.
The proposed changes are aimed at removing existing bureaucratic barriers and allowing penetration testers (security testers) to legally check software for vulnerabilities.
An important condition remains the prohibition on transferring information about identified shortcomings to third parties, especially if the program developers are in unfriendly countries. This point will be further clarified in the second reading of the bill.
The initiative is also aimed at protecting the interests of software users, who will now be able to check the security of installed programs. According to Deputy Anatoly Wasserman, this innovation can be compared to repairing a car or clothing, when eliminating defects is necessary for safety.
Read materials on the topic:
Russia plans to create its own register of "white" hackers
"Gosuslugi", ESIA and other Russian digital systems are attacked by white hackers
"Russian Post" will hire "white hackers" to check IT infrastructure
