{"id":6487,"date":"2022-01-25T09:43:04","date_gmt":"2022-01-25T09:43:04","guid":{"rendered":"https:\/\/pstqb.pt\/?p=6487"},"modified":"2022-01-25T10:46:01","modified_gmt":"2022-01-25T10:46:01","slug":"comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos","status":"publish","type":"post","link":"https:\/\/pstqb.pt\/en\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/","title":{"rendered":"European Commission Launches Program to Reward Bug Detection in Its Projects"},"content":{"rendered":"<div data-elementor-type=\"wp-post\" data-elementor-id=\"6487\" class=\"elementor elementor-6487\">\n\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-5a0c173 elementor-section-boxed elementor-section-height-default elementor-section-height-default wpr-particle-no wpr-jarallax-no wpr-parallax-no wpr-sticky-section-no wpr-column-slider-no wpr-equal-height-no\" data-id=\"5a0c173\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-24d47c2\" data-id=\"24d47c2\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-c086ef7 elementor-widget elementor-widget-text-editor\" data-id=\"c086ef7\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>The European Commission has launched a program that rewards the detection of <em>bugs<\/em> in their projects<em>pen Source<\/em> that support its public services.<\/p><p>The bounty hunters of <em>bugs <\/em>can receive up to \u20ac5,000 (the equivalent of 5,600 US dollars) for finding security vulnerabilities in <strong><em>software<\/em><\/strong> open source code used throughout the European Union (EU), including <em>LibreOffice<\/em>, <em>LEOS<\/em>, <em>Mastodon<\/em>, Odoo and <em>CryptPad<\/em>. This program, led by the European rewards platform of <em>bugs<\/em> <em>Intigriti<\/em>will also offer a bonus of 20% if a code fix for the bugs is provided by the researchers.<\/p><p>In a statement released on January 19, the EC said that it is looking for reports of security vulnerabilities, such as the exposure of personal data, horizontal\/vertical privilege escalation and the injection of <em>SQL<\/em>. The highest reward will be paid for the detection of \"exceptional vulnerabilities\".<\/p><p>This latest program follows on from another program, called FOSSA, also run by the EU, which paid out more than 220,000 dollars in its 18 months of operation, and which was announced as a \"<a href=\"https:\/\/portswigger.net\/daily-swig\/open-source-community-toasts-efforts-of-eu-fossa-2-bug-bounty-program\">remarkable success<\/a>\".<\/p><p>Speaking to <em>The Daily Swig<\/em>, Inti De Ceukelaire, head of <em>hackers<\/em> of <em>Intigriti<\/em>said that the partnership came about last year, when the <em>Intigriti<\/em> led a program funded by the <em>ISA2<\/em> of the EC. \"We are committed to further nurturing the relationship with the open source communities that we have established over the last few years,\" he said. <em>tester<\/em> Belgian. \"Personally, I believe that all government bodies should have and encourage the use of vulnerability disclosure policies and introduce or adopt unequivocal laws to support vulnerability research. The rewards for <em>bugs<\/em>, among other <em>crowdsourcing<\/em>They are a great way of encouraging this.\"<\/p><p>De Ceukelaire added: \"Virtually all organizations use open source projects in one way or another. Identifying and resolving security vulnerabilities in these projects has an impact at scale. The <em>Log4j<\/em> has shown us that supporting the security of widely used open source projects is an absolute necessity, so we can only applaud this initiative by the European Commission.\"<\/p><p>\u00a0<\/p><div style=\"font-size: 15px; font-style: normal; font-weight: 500;\"><span style=\"font-size: 15px;\">The original article\u00a0<\/span><span style=\"font-size: 15px;\">via <i>The Daily Swig <\/i><\/span><span style=\"font-size: 15px;\">can be read at:<br \/><\/span><a href=\"https:\/\/portswigger.net\/daily-swig\/european-commission-launches-new-open-source-software-bug-bounty-program\">https:\/\/portswigger.net\/daily-swig\/european-commission-launches-new-open-source-software-bug-bounty-program<\/a><\/div><div>\u00a0<\/div>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>","protected":false},"excerpt":{"rendered":"<p>The European Commission has launched a program that rewards the detection of bugs in its Open Source projects that underpin its public services. Bug bounty hunters will be able to receive up to \u20ac5,000 (the equivalent of 5,600 US dollars) for finding security vulnerabilities in open source software used throughout the European Union (EU), including LibreOffice, LEOS, Mastodon, Odoo and CryptPad. This program, led by the European bug bounty platform Intigriti, will also offer a bonus of 20% if a code fix for the bugs is provided by the researchers. In a statement released on January 19, the EC said it is looking for reports of security vulnerabilities such as the exposure of personal data, horizontal\/vertical privilege escalation and SQL injection. The highest reward will be paid for the detection of \"exceptional vulnerabilities\". This latest program follows on from another program, called FOSSA, also run by the EU, which paid out more than 220,000 dollars in its 18 months of operation, and which was heralded as a \"remarkable success\". Speaking to The Daily Swig, Inti De Ceukelaire, head of hacking at Intigriti, said that the partnership came about last year when Intigriti led a program funded by the EC's ISA2 program. \"We are committed to further nurturing the relationship with the open source communities that we have established over the last few years,\" said the Belgian tester. \"Personally, I believe that all government bodies should have and encourage the use of vulnerability disclosure policies and introduce or adopt unambiguous laws to support vulnerability research. Bug bounties, among other crowdsourcing initiatives, are a great way to encourage this.\" De Ceukelaire added: \"Virtually all organizations use open source projects in one way or another. Identifying and resolving security vulnerabilities in these projects has an impact at scale. The Log4j incident has shown us that supporting the security of widely used open source projects is an absolute necessity, so we can only applaud this initiative by the European Commission.\" The original article via The Daily Swig can be read at: https:\/\/portswigger.net\/daily-swig\/european-commission-launches-new-open-source-software-bug-bounty-program<\/p>","protected":false},"author":2,"featured_media":6501,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"default","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"default","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[31],"tags":[],"class_list":["post-6487","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-destaque"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.9 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Comiss\u00e3o Europeia Lan\u00e7a Programa que Recompensa a Detec\u00e7\u00e3o de Bugs nos Seus Projectos - PSTQB<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/pstqb.pt\/en\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Comiss\u00e3o Europeia Lan\u00e7a Programa que Recompensa a Detec\u00e7\u00e3o de Bugs nos Seus Projectos - PSTQB\" \/>\n<meta property=\"og:description\" content=\"A Comiss\u00e3o Europeia lan\u00e7ou um programa que recompensa a detec\u00e7\u00e3o de bugs nos seus projectos Open Source que sustentam os seus servi\u00e7os p\u00fablicos. Os ca\u00e7adores de recompensas de bugs poder\u00e3o receber at\u00e9 5.000\u20ac (o equivalente a&nbsp; 5.600 d\u00f3lares americanos) para encontrar vulnerabilidades de seguran\u00e7a em software de c\u00f3digo aberto usado em toda a Uni\u00e3o Europeia (UE), incluindo LibreOffice, LEOS, Mastodon, Odoo e CryptPad. Este programa, liderado pela plataforma europeia de recompensas de bugs Intigriti, tamb\u00e9m oferecer\u00e1 um b\u00f3nus de 20% se uma corre\u00e7\u00e3o de c\u00f3digo para os bugs for fornecida pelos investigadores. Num comunicado divulgado a 19 de janeiro, a CE disse que est\u00e1 \u00e0 procura de relat\u00f3rios de vulnerabilidades de seguran\u00e7a, como a exposi\u00e7\u00e3o de dados pessoais, escala\u00e7\u00e3o de privil\u00e9gios horizontal\/vertical e inje\u00e7\u00e3o de SQL. A maior recompensa ser\u00e1 paga pela dete\u00e7\u00e3o de \u201cvulnerabilidades excepcionais\u201d. Este \u00faltimo programa surge no seguimento de um outro programa, denominado FOSSA, tamb\u00e9m da UE, que pagou mais de 220.000 d\u00f3lares nos seus 18 meses de opera\u00e7\u00e3o, e que foi anunciado como um \u201csucesso not\u00e1vel\u201d. Em declara\u00e7\u00f5es ao The Daily Swig, Inti De Ceukelaire, chefe de hackers da Intigriti, disse que a parceria surgiu no ano passado, quando a Intigriti liderou um programa financiado pelo programa ISA2 da CE. \u201cEstamos comprometidos em nutrir ainda mais o relacionamento com as comunidades de c\u00f3digo aberto que estabelecemos nos \u00faltimos anos\u201d, referiu o tester belga. \u201cPessoalmente, acredito que todos os \u00f3rg\u00e3os governamentais devem ter e incentivar o uso de pol\u00edticas de divulga\u00e7\u00e3o de vulnerabilidades e introduzir ou adotar leis inequ\u00edvocas para apoiar a pesquisa de vulnerabilidades. As recompensas por bugs, entre outras iniciativas de crowdsourcing, s\u00e3o uma \u00f3tima maneira de incentivar isso.\u201d De Ceukelaire ainda acrescentou: \u201cPraticamente todas as organiza\u00e7\u00f5es usam projetos de c\u00f3digo aberto de uma forma ou de outra. Identificar e resolver vulnerabilidades de seguran\u00e7a nesses projetos tem um impacto em escala. O incidente do Log4j mostrou-nos que apoiar a seguran\u00e7a de projetos de c\u00f3digo aberto amplamente utilizados \u00e9 uma necessidade absoluta, por isso s\u00f3 podemos aplaudir essa iniciativa da Comiss\u00e3o Europeia.\u201d O artigo original&nbsp;via The Daily Swig pode ser lido em: https:\/\/portswigger.net\/daily-swig\/european-commission-launches-new-open-source-software-bug-bounty-program\" \/>\n<meta property=\"og:url\" content=\"https:\/\/pstqb.pt\/en\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/\" \/>\n<meta property=\"og:site_name\" content=\"PSTQB\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/pstqb\/\" \/>\n<meta property=\"article:published_time\" content=\"2022-01-25T09:43:04+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-01-25T10:46:01+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/pstqb.pt\/wp-content\/uploads\/2022\/01\/noticia-2.jpeg\" \/>\n\t<meta property=\"og:image:width\" content=\"1500\" \/>\n\t<meta property=\"og:image:height\" content=\"1011\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"PSTQB_site_admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@PSTQB\" \/>\n<meta name=\"twitter:site\" content=\"@PSTQB\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"PSTQB_site_admin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/pstqb.pt\\\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/pstqb.pt\\\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\\\/\"},\"author\":{\"name\":\"PSTQB_site_admin\",\"@id\":\"https:\\\/\\\/pstqb.pt\\\/#\\\/schema\\\/person\\\/9afa078bf677bbb98b014cadce55673c\"},\"headline\":\"Comiss\u00e3o Europeia Lan\u00e7a Programa que Recompensa a Detec\u00e7\u00e3o de Bugs nos Seus Projectos\",\"datePublished\":\"2022-01-25T09:43:04+00:00\",\"dateModified\":\"2022-01-25T10:46:01+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/pstqb.pt\\\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\\\/\"},\"wordCount\":404,\"publisher\":{\"@id\":\"https:\\\/\\\/pstqb.pt\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/pstqb.pt\\\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/pstqb.pt\\\/wp-content\\\/uploads\\\/2022\\\/01\\\/noticia-2.jpeg\",\"articleSection\":[\"Destaque\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/pstqb.pt\\\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\\\/\",\"url\":\"https:\\\/\\\/pstqb.pt\\\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\\\/\",\"name\":\"Comiss\u00e3o Europeia Lan\u00e7a Programa que Recompensa a Detec\u00e7\u00e3o de Bugs nos Seus Projectos - PSTQB\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/pstqb.pt\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/pstqb.pt\\\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/pstqb.pt\\\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/pstqb.pt\\\/wp-content\\\/uploads\\\/2022\\\/01\\\/noticia-2.jpeg\",\"datePublished\":\"2022-01-25T09:43:04+00:00\",\"dateModified\":\"2022-01-25T10:46:01+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/pstqb.pt\\\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/pstqb.pt\\\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/pstqb.pt\\\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\\\/#primaryimage\",\"url\":\"https:\\\/\\\/pstqb.pt\\\/wp-content\\\/uploads\\\/2022\\\/01\\\/noticia-2.jpeg\",\"contentUrl\":\"https:\\\/\\\/pstqb.pt\\\/wp-content\\\/uploads\\\/2022\\\/01\\\/noticia-2.jpeg\",\"width\":1500,\"height\":1011},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/pstqb.pt\\\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/pstqb.pt\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Comiss\u00e3o Europeia Lan\u00e7a Programa que Recompensa a Detec\u00e7\u00e3o de Bugs nos Seus Projectos\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/pstqb.pt\\\/#website\",\"url\":\"https:\\\/\\\/pstqb.pt\\\/\",\"name\":\"PSTQB\",\"description\":\"Associa\u00e7\u00e3o Portuguesa de Testes de Software\",\"publisher\":{\"@id\":\"https:\\\/\\\/pstqb.pt\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/pstqb.pt\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/pstqb.pt\\\/#organization\",\"name\":\"PSTQB - Associa\u00e7\u00e3o Portuguesa de Testes de Software\",\"url\":\"https:\\\/\\\/pstqb.pt\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/pstqb.pt\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/pstqb.pt\\\/wp-content\\\/uploads\\\/2023\\\/02\\\/cropped-PSTQB.png\",\"contentUrl\":\"https:\\\/\\\/pstqb.pt\\\/wp-content\\\/uploads\\\/2023\\\/02\\\/cropped-PSTQB.png\",\"width\":1845,\"height\":885,\"caption\":\"PSTQB - Associa\u00e7\u00e3o Portuguesa de Testes de Software\"},\"image\":{\"@id\":\"https:\\\/\\\/pstqb.pt\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/pstqb\\\/\",\"https:\\\/\\\/x.com\\\/PSTQB\",\"https:\\\/\\\/www.instagram.com\\\/pstqb\\\/\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/pstqb\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/pstqb.pt\\\/#\\\/schema\\\/person\\\/9afa078bf677bbb98b014cadce55673c\",\"name\":\"PSTQB_site_admin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e0e0041e39266b0fc263ff272e2c2cd2ed48c0e8add5c50b40904369f7f18f01?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e0e0041e39266b0fc263ff272e2c2cd2ed48c0e8add5c50b40904369f7f18f01?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e0e0041e39266b0fc263ff272e2c2cd2ed48c0e8add5c50b40904369f7f18f01?s=96&d=mm&r=g\",\"caption\":\"PSTQB_site_admin\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"European Commission Launches Program that Rewards Bug Detection in Its Projects - PSTQB","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/pstqb.pt\/en\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/","og_locale":"en_US","og_type":"article","og_title":"Comiss\u00e3o Europeia Lan\u00e7a Programa que Recompensa a Detec\u00e7\u00e3o de Bugs nos Seus Projectos - PSTQB","og_description":"A Comiss\u00e3o Europeia lan\u00e7ou um programa que recompensa a detec\u00e7\u00e3o de bugs nos seus projectos Open Source que sustentam os seus servi\u00e7os p\u00fablicos. Os ca\u00e7adores de recompensas de bugs poder\u00e3o receber at\u00e9 5.000\u20ac (o equivalente a&nbsp; 5.600 d\u00f3lares americanos) para encontrar vulnerabilidades de seguran\u00e7a em software de c\u00f3digo aberto usado em toda a Uni\u00e3o Europeia (UE), incluindo LibreOffice, LEOS, Mastodon, Odoo e CryptPad. Este programa, liderado pela plataforma europeia de recompensas de bugs Intigriti, tamb\u00e9m oferecer\u00e1 um b\u00f3nus de 20% se uma corre\u00e7\u00e3o de c\u00f3digo para os bugs for fornecida pelos investigadores. Num comunicado divulgado a 19 de janeiro, a CE disse que est\u00e1 \u00e0 procura de relat\u00f3rios de vulnerabilidades de seguran\u00e7a, como a exposi\u00e7\u00e3o de dados pessoais, escala\u00e7\u00e3o de privil\u00e9gios horizontal\/vertical e inje\u00e7\u00e3o de SQL. A maior recompensa ser\u00e1 paga pela dete\u00e7\u00e3o de \u201cvulnerabilidades excepcionais\u201d. Este \u00faltimo programa surge no seguimento de um outro programa, denominado FOSSA, tamb\u00e9m da UE, que pagou mais de 220.000 d\u00f3lares nos seus 18 meses de opera\u00e7\u00e3o, e que foi anunciado como um \u201csucesso not\u00e1vel\u201d. Em declara\u00e7\u00f5es ao The Daily Swig, Inti De Ceukelaire, chefe de hackers da Intigriti, disse que a parceria surgiu no ano passado, quando a Intigriti liderou um programa financiado pelo programa ISA2 da CE. \u201cEstamos comprometidos em nutrir ainda mais o relacionamento com as comunidades de c\u00f3digo aberto que estabelecemos nos \u00faltimos anos\u201d, referiu o tester belga. \u201cPessoalmente, acredito que todos os \u00f3rg\u00e3os governamentais devem ter e incentivar o uso de pol\u00edticas de divulga\u00e7\u00e3o de vulnerabilidades e introduzir ou adotar leis inequ\u00edvocas para apoiar a pesquisa de vulnerabilidades. As recompensas por bugs, entre outras iniciativas de crowdsourcing, s\u00e3o uma \u00f3tima maneira de incentivar isso.\u201d De Ceukelaire ainda acrescentou: \u201cPraticamente todas as organiza\u00e7\u00f5es usam projetos de c\u00f3digo aberto de uma forma ou de outra. Identificar e resolver vulnerabilidades de seguran\u00e7a nesses projetos tem um impacto em escala. O incidente do Log4j mostrou-nos que apoiar a seguran\u00e7a de projetos de c\u00f3digo aberto amplamente utilizados \u00e9 uma necessidade absoluta, por isso s\u00f3 podemos aplaudir essa iniciativa da Comiss\u00e3o Europeia.\u201d O artigo original&nbsp;via The Daily Swig pode ser lido em: https:\/\/portswigger.net\/daily-swig\/european-commission-launches-new-open-source-software-bug-bounty-program","og_url":"https:\/\/pstqb.pt\/en\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/","og_site_name":"PSTQB","article_publisher":"https:\/\/www.facebook.com\/pstqb\/","article_published_time":"2022-01-25T09:43:04+00:00","article_modified_time":"2022-01-25T10:46:01+00:00","og_image":[{"width":1500,"height":1011,"url":"https:\/\/pstqb.pt\/wp-content\/uploads\/2022\/01\/noticia-2.jpeg","type":"image\/jpeg"}],"author":"PSTQB_site_admin","twitter_card":"summary_large_image","twitter_creator":"@PSTQB","twitter_site":"@PSTQB","twitter_misc":{"Written by":"PSTQB_site_admin","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/pstqb.pt\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/#article","isPartOf":{"@id":"https:\/\/pstqb.pt\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/"},"author":{"name":"PSTQB_site_admin","@id":"https:\/\/pstqb.pt\/#\/schema\/person\/9afa078bf677bbb98b014cadce55673c"},"headline":"Comiss\u00e3o Europeia Lan\u00e7a Programa que Recompensa a Detec\u00e7\u00e3o de Bugs nos Seus Projectos","datePublished":"2022-01-25T09:43:04+00:00","dateModified":"2022-01-25T10:46:01+00:00","mainEntityOfPage":{"@id":"https:\/\/pstqb.pt\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/"},"wordCount":404,"publisher":{"@id":"https:\/\/pstqb.pt\/#organization"},"image":{"@id":"https:\/\/pstqb.pt\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/#primaryimage"},"thumbnailUrl":"https:\/\/pstqb.pt\/wp-content\/uploads\/2022\/01\/noticia-2.jpeg","articleSection":["Destaque"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/pstqb.pt\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/","url":"https:\/\/pstqb.pt\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/","name":"European Commission Launches Program that Rewards Bug Detection in Its Projects - PSTQB","isPartOf":{"@id":"https:\/\/pstqb.pt\/#website"},"primaryImageOfPage":{"@id":"https:\/\/pstqb.pt\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/#primaryimage"},"image":{"@id":"https:\/\/pstqb.pt\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/#primaryimage"},"thumbnailUrl":"https:\/\/pstqb.pt\/wp-content\/uploads\/2022\/01\/noticia-2.jpeg","datePublished":"2022-01-25T09:43:04+00:00","dateModified":"2022-01-25T10:46:01+00:00","breadcrumb":{"@id":"https:\/\/pstqb.pt\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/pstqb.pt\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/pstqb.pt\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/#primaryimage","url":"https:\/\/pstqb.pt\/wp-content\/uploads\/2022\/01\/noticia-2.jpeg","contentUrl":"https:\/\/pstqb.pt\/wp-content\/uploads\/2022\/01\/noticia-2.jpeg","width":1500,"height":1011},{"@type":"BreadcrumbList","@id":"https:\/\/pstqb.pt\/comissao-europeia-lanca-programa-que-recompensa-a-deteccao-de-bugs-nos-seus-projectos\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/pstqb.pt\/"},{"@type":"ListItem","position":2,"name":"Comiss\u00e3o Europeia Lan\u00e7a Programa que Recompensa a Detec\u00e7\u00e3o de Bugs nos Seus Projectos"}]},{"@type":"WebSite","@id":"https:\/\/pstqb.pt\/#website","url":"https:\/\/pstqb.pt\/","name":"PSTQB","description":"Portuguese Software Testing Qualifications Board","publisher":{"@id":"https:\/\/pstqb.pt\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/pstqb.pt\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/pstqb.pt\/#organization","name":"PSTQB - Portuguese Software Testing Qualifications Board","url":"https:\/\/pstqb.pt\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/pstqb.pt\/#\/schema\/logo\/image\/","url":"https:\/\/pstqb.pt\/wp-content\/uploads\/2023\/02\/cropped-PSTQB.png","contentUrl":"https:\/\/pstqb.pt\/wp-content\/uploads\/2023\/02\/cropped-PSTQB.png","width":1845,"height":885,"caption":"PSTQB - Associa\u00e7\u00e3o Portuguesa de Testes de Software"},"image":{"@id":"https:\/\/pstqb.pt\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/pstqb\/","https:\/\/x.com\/PSTQB","https:\/\/www.instagram.com\/pstqb\/","https:\/\/www.linkedin.com\/company\/pstqb\/"]},{"@type":"Person","@id":"https:\/\/pstqb.pt\/#\/schema\/person\/9afa078bf677bbb98b014cadce55673c","name":"PSTQB_site_admin","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/e0e0041e39266b0fc263ff272e2c2cd2ed48c0e8add5c50b40904369f7f18f01?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/e0e0041e39266b0fc263ff272e2c2cd2ed48c0e8add5c50b40904369f7f18f01?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/e0e0041e39266b0fc263ff272e2c2cd2ed48c0e8add5c50b40904369f7f18f01?s=96&d=mm&r=g","caption":"PSTQB_site_admin"}}]}},"_links":{"self":[{"href":"https:\/\/pstqb.pt\/en\/wp-json\/wp\/v2\/posts\/6487","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pstqb.pt\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/pstqb.pt\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/pstqb.pt\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/pstqb.pt\/en\/wp-json\/wp\/v2\/comments?post=6487"}],"version-history":[{"count":0,"href":"https:\/\/pstqb.pt\/en\/wp-json\/wp\/v2\/posts\/6487\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/pstqb.pt\/en\/wp-json\/wp\/v2\/media\/6501"}],"wp:attachment":[{"href":"https:\/\/pstqb.pt\/en\/wp-json\/wp\/v2\/media?parent=6487"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/pstqb.pt\/en\/wp-json\/wp\/v2\/categories?post=6487"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/pstqb.pt\/en\/wp-json\/wp\/v2\/tags?post=6487"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}