Risk
6/17/2013
12:51 PM
50%
50%

Google Launches Attack On Online Child Pornography

Google pledges millions to charities and software developers to help it eliminate online material that endangers children.

Google announced several programs to make it more difficult to use its algorithms to access child pornography. The news comes on the heels of what some U.K. commentators claim is the U.S. search giant's indifference to the problem, which has been linked to child abductions and attacks in the U.K.

The issue has gotten so far up the national debate that Prime Minister David Cameron said over the weekend that he fears such content could "harm" his own children, and that he worries when any of his three children "grab hold of the iPad" because they risk seeing obscene images.

[ Google criticism runs deep. See British MPs Attack Google On Taxes. ]

In what cynics say is mere PR, but others see as genuine moves to make access to extreme content more difficult, Google claims it has set up several initiatives to help address the problem.

The company will make available a £1.27 million ($2 million) Child Protection Technology Fund to help ISVs and software developers produce new tools to help fight the problem of child pornography on the Web.

Google also said it's building a new database that will let concerned agencies better share information about online child pornography.

The announcements come on top of a separate, four-year, £1 million ($1.6 million) donation the vendor made last week to the Internet Watch Foundation, a nonprofit organization that works to stop child pornography on the Internet. The donation was welcomed by the charity as demonstrating Google's "moral leadership in the field."

Google director of communications and public affairs Scott Rubin said: "This grant is part of a broader package of measures we are putting in place with other international agencies to help tackle this problem at a global scale."

Jacquelline Fuller, director of Google Giving, blogged Saturday that, "We're in the business of making information widely available, but there's certain 'information' that should never be created or found. We can do a lot to ensure it's not available online -- and that when people try to share this disgusting content they are caught and prosecuted."

Fuller also noted that since 2008 Google has been tagging known child sexual abuse images, which makes it easier to identify similar or duplicate images. She said that her company is now extending that approach to support more accurate tracking of outlawed images across the Internet.

This will enable companies, law enforcement and charities to better collaborate on detecting and removing child abuse images, said Google.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-4440
Published: 2014-12-19
Password Generator (aka Pwgen) before 2.07 generates weak non-tty passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack.

CVE-2013-4442
Published: 2014-12-19
Password Generator (aka Pwgen) before 2.07 uses weak pseudo generated numbers when /dev/urandom is unavailable, which makes it easier for context-dependent attackers to guess the numbers.

CVE-2013-7401
Published: 2014-12-19
The parse_request function in request.c in c-icap 0.2.x allows remote attackers to cause a denial of service (crash) via a URI without a " " or "?" character in an ICAP request, as demonstrated by use of the OPTIONS method.

CVE-2014-2026
Published: 2014-12-19
Cross-site scripting (XSS) vulnerability in the search functionality in United Planet Intrexx Professional before 5.2 Online Update 0905 and 6.x before 6.0 Online Update 10 allows remote attackers to inject arbitrary web script or HTML via the request parameter.

CVE-2014-2716
Published: 2014-12-19
Ekahau B4 staff badge tag 5.7 with firmware 1.4.52, Real-Time Location System (RTLS) Controller 6.0.5-FINAL, and Activator 3 reuses the RC4 cipher stream, which makes it easier for remote attackers to obtain plaintext messages via an XOR operation on two ciphertexts.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.