Risk
7/14/2008
03:16 PM
Connect Directly
Google+
LinkedIn
Twitter
RSS
E-Mail
50%
50%

Google Search Security Mistaken For Censorship

By warning users of a hack on a net neutrality opponent's Web site, Google was accused of trying to silence critics of a policy it supports.

Google is known for its code of conduct -- "Don't be evil" -- as much as its computer code. But as the company has become a dominant force online, Google's detractors have become more willing to see evil in its actions, even when they're seeing things that aren't there.

On Friday evening, the Web site of the Progress & Freedom Foundation was hit with a SQL injection attack that temporarily turned it into a malware distribution vector -- the injected script called out to a malicious third-party site that attempted to infect visitors' computers with malware.

Google has been automatically flagging malicious sites in its search results list for about two years and, upon detecting the hack at pff.org, its anti-malware code began adding a warning to search results listings for certain PFF pages.

But because the warning applied to Web pages that contained documents expressing opposition to net neutrality, a policy that Google supports, some saw politically motivated censorship.

Google "appears to be blocking a site which expresses opinions with which it does not agree ...," said Brett Glass, owner of wireless ISP Lariat.net, in an e-mail sent to David Farber's Interesting People mailing list. "When one does a search for the terms 'neutrality' and 'site:pff.org' ... many of the pages and documents on the site -- in particular, white papers expressing views with which Google disagrees -- are tagged with a warning that 'This site may harm your computer.'"

Glass didn't immediately respond to a request for comment. In previous e-mail messages and online posts, he has been critical of net neutrality.

As Google senior engineer Niels Provos and PFF visiting fellow Berin Michael Szoka explained in reply messages, there wasn't any political censorship. The PFF site was flagged as part of a technical process based on Google's anti-malware code. Sites that believe they have been unfairly or incorrectly labeled as having malware can appeal to StopBadware.org, which helps moderate potential disputes.

"Some of our critics are unfortunately quick to leap to political conclusions when a technical explanation is the answer," said Google spokesperson Adam Kovacevich.

However, the political and technical appear to be destined to collide as Google's influence grows. Indeed, in many ways politics and technology have fused.

Back in May, U.S. Sen. Joseph Liberman sent Google CEO Eric Schmidt an open letter seeking the removal of Islamic terrorist videos from YouTube. YouTube responded by saying it does remove videos that violate its terms of service, but that it would not remove "legal nonviolent or non-hate speech videos."

Outside the United States, in countries like China, for example, Google has been more willing to accommodate politically directed requests.

And because of that, Google will find it hard to avoid being seen as a suspect when speech gets silenced, even when it has acted in good faith.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-1414
Published: 2015-02-27
Integer overflow in FreeBSD before 8.4 p24, 9.x before 9.3 p10. 10.0 before p18, and 10.1 before p6 allows remote attackers to cause a denial of service (crash) via a crafted IGMP packet, which triggers an incorrect size calculation and allocation of insufficient memory.

CVE-2015-2072
Published: 2015-02-27
Multiple cross-site scripting (XSS) vulnerabilities in SAP HANA 73 (1.00.73.00.389160) and HANA Developer Edition 80 (1.00.80.00.391861) allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to (1) ide/core/plugins/editor/templates/trace/hanaTraceDetailService.xsjs or...

CVE-2015-2075
Published: 2015-02-27
SAP BussinessObjects Edge 4.0 allows remote attackers to delete audit events from the auditee queue via a clearData CORBA operation, aka SAP Note 2011396.

CVE-2015-2076
Published: 2015-02-27
The Auditing service in SAP BussinessObjects Edge 4.0 allows remote attackers to obtains sensitive information by reading an audit event, aka SAP Note 2011395.

CVE-2015-2101
Published: 2015-02-27
Cross-site scripting (XSS) vulnerability in the Navigate bar in the Navigate module before 6.x-1.1 and 7.x-1.x before 7.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Dark Reading Radio
Archived Dark Reading Radio
How can security professionals better engage with their peers, both in person and online? In this Dark Reading Radio show, we will talk to leaders at some of the security industry’s professional organizations about how security pros can get more involved – with their colleagues in the same industry, with their peers in other industries, and with the IT security community as a whole.