Risk
6/17/2013
12:51 PM
50%
50%

Google Launches Attack On Online Child Pornography

Google pledges millions to charities and software developers to help it eliminate online material that endangers children.

Google announced several programs to make it more difficult to use its algorithms to access child pornography. The news comes on the heels of what some U.K. commentators claim is the U.S. search giant's indifference to the problem, which has been linked to child abductions and attacks in the U.K.

The issue has gotten so far up the national debate that Prime Minister David Cameron said over the weekend that he fears such content could "harm" his own children, and that he worries when any of his three children "grab hold of the iPad" because they risk seeing obscene images.

[ Google criticism runs deep. See British MPs Attack Google On Taxes. ]

In what cynics say is mere PR, but others see as genuine moves to make access to extreme content more difficult, Google claims it has set up several initiatives to help address the problem.

The company will make available a £1.27 million ($2 million) Child Protection Technology Fund to help ISVs and software developers produce new tools to help fight the problem of child pornography on the Web.

Google also said it's building a new database that will let concerned agencies better share information about online child pornography.

The announcements come on top of a separate, four-year, £1 million ($1.6 million) donation the vendor made last week to the Internet Watch Foundation, a nonprofit organization that works to stop child pornography on the Internet. The donation was welcomed by the charity as demonstrating Google's "moral leadership in the field."

Google director of communications and public affairs Scott Rubin said: "This grant is part of a broader package of measures we are putting in place with other international agencies to help tackle this problem at a global scale."

Jacquelline Fuller, director of Google Giving, blogged Saturday that, "We're in the business of making information widely available, but there's certain 'information' that should never be created or found. We can do a lot to ensure it's not available online -- and that when people try to share this disgusting content they are caught and prosecuted."

Fuller also noted that since 2008 Google has been tagging known child sexual abuse images, which makes it easier to identify similar or duplicate images. She said that her company is now extending that approach to support more accurate tracking of outlawed images across the Internet.

This will enable companies, law enforcement and charities to better collaborate on detecting and removing child abuse images, said Google.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-3580
Published: 2014-12-18
The mod_dav_svn Apache HTTPD server module in Apache Subversion 1.x before 1.7.19 and 1.8.x before 1.8.11 allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a REPORT request for a resource that does not exist.

CVE-2014-4801
Published: 2014-12-18
Cross-site scripting (XSS) vulnerability in IBM Rational Quality Manager 2.x through 2.0.1.1, 3.x before 3.0.1.6 iFix 4, 4.x before 4.0.7 iFix 2, and 5.x before 5.0.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

CVE-2014-6076
Published: 2014-12-18
IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allow remote attackers to conduct clickjacking attacks via a crafted web site.

CVE-2014-6077
Published: 2014-12-18
Cross-site request forgery (CSRF) vulnerability in IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences.

CVE-2014-6078
Published: 2014-12-18
IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 do not have a lockout period after invalid login attempts, which makes it easier for remote attackers to obtain admin access via a brute-force attack.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.