Yandex Food doubled the fee for ethical hackers who could find technical vulnerabilities in the service: exposing user data, bypassing the rules for using promotional codes, cheating Yandex plus bonus points, fraud by courier partners. For the discovery of weaknesses, a hacker can receive from 23 thousand rubles to 1.5 million rubles.
As Yandex explains, rewarding ethical hackers is one of the measures to strengthen control over the service’s security after the data breach that occurred in early 2022. It is in Yandex Food’s interest to prevent such situations from happening again, so the company continues to look for flaws, strives to make the system even more secure, and is ready to reward those who help with this.
The practice of debugging is common in large IT companies. Their products are constantly updated, and some malfunctions are easier to detect from the outside, than from the inside. Yandex launched Bug Hunt 10 years ago. And ethical hackers can get more rewards for finding bugs on Yandex Food as part of the Bug Hunt program from July 1 to August 31.
Source: Gazeta
