Risk
7/14/2008
03:16 PM
Connect Directly
Google+
LinkedIn
Twitter
RSS
E-Mail
50%
50%

Google Search Security Mistaken For Censorship

By warning users of a hack on a net neutrality opponent's Web site, Google was accused of trying to silence critics of a policy it supports.

Google is known for its code of conduct -- "Don't be evil" -- as much as its computer code. But as the company has become a dominant force online, Google's detractors have become more willing to see evil in its actions, even when they're seeing things that aren't there.

On Friday evening, the Web site of the Progress & Freedom Foundation was hit with a SQL injection attack that temporarily turned it into a malware distribution vector -- the injected script called out to a malicious third-party site that attempted to infect visitors' computers with malware.

Google has been automatically flagging malicious sites in its search results list for about two years and, upon detecting the hack at pff.org, its anti-malware code began adding a warning to search results listings for certain PFF pages.

But because the warning applied to Web pages that contained documents expressing opposition to net neutrality, a policy that Google supports, some saw politically motivated censorship.

Google "appears to be blocking a site which expresses opinions with which it does not agree ...," said Brett Glass, owner of wireless ISP Lariat.net, in an e-mail sent to David Farber's Interesting People mailing list. "When one does a search for the terms 'neutrality' and 'site:pff.org' ... many of the pages and documents on the site -- in particular, white papers expressing views with which Google disagrees -- are tagged with a warning that 'This site may harm your computer.'"

Glass didn't immediately respond to a request for comment. In previous e-mail messages and online posts, he has been critical of net neutrality.

As Google senior engineer Niels Provos and PFF visiting fellow Berin Michael Szoka explained in reply messages, there wasn't any political censorship. The PFF site was flagged as part of a technical process based on Google's anti-malware code. Sites that believe they have been unfairly or incorrectly labeled as having malware can appeal to StopBadware.org, which helps moderate potential disputes.

"Some of our critics are unfortunately quick to leap to political conclusions when a technical explanation is the answer," said Google spokesperson Adam Kovacevich.

However, the political and technical appear to be destined to collide as Google's influence grows. Indeed, in many ways politics and technology have fused.

Back in May, U.S. Sen. Joseph Liberman sent Google CEO Eric Schmidt an open letter seeking the removal of Islamic terrorist videos from YouTube. YouTube responded by saying it does remove videos that violate its terms of service, but that it would not remove "legal nonviolent or non-hate speech videos."

Outside the United States, in countries like China, for example, Google has been more willing to accommodate politically directed requests.

And because of that, Google will find it hard to avoid being seen as a suspect when speech gets silenced, even when it has acted in good faith.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading December Tech Digest
Experts weigh in on the pros and cons of end-user security training.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-5395
Published: 2014-11-21
Multiple cross-site request forgery (CSRF) vulnerabilities in Huawei HiLink E3276 and E3236 TCPU before V200R002B470D13SP00C00 and WebUI before V100R007B100D03SP01C03, E5180s-22 before 21.270.21.00.00, and E586Bs-2 before 21.322.10.00.889 allow remote attackers to hijack the authentication of users ...

CVE-2014-7137
Published: 2014-11-21
Multiple SQL injection vulnerabilities in Dolibarr ERP/CRM before 3.6.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) contactid parameter in an addcontact action, (2) ligne parameter in a swapstatut action, or (3) project_ref parameter to projet/tasks/contact.php; (4...

CVE-2014-7871
Published: 2014-11-21
SQL injection vulnerability in Open-Xchange (OX) AppSuite before 7.4.2-rev36 and 7.6.x before 7.6.0-rev23 allows remote authenticated users to execute arbitrary SQL commands via a crafted jslob API call.

CVE-2014-8090
Published: 2014-11-21
The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x before 2.1.5 allows remote attackers to cause a denial of service (CPU and memory consumption) a crafted XML document containing an empty string in an entity that is used in a large number of nes...

CVE-2014-8469
Published: 2014-11-21
Cross-site scripting (XSS) vulnerability in Guests/Boots in AdminCP in Moxi9 PHPFox before 4 Beta allows remote attackers to inject arbitrary web script or HTML via the User-Agent header.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Now that the holiday season is about to begin both online and in stores, will this be yet another season of nonstop gifting to cybercriminals?