Risk
7/22/2008
02:54 PM
Connect Directly
RSS
E-Mail
50%
50%

N.Y. Leans On Comcast To Fight Child Porn

The state agreement includes a mandate that ISPs contribute funds to prevent the distribution of child pornography online.

Comcast has signed a national agreement promising to limit the distribution of child pornography, but that's not enough for New York state.

New York Attorney General Andrew Cuomo said he'll give the company five days to sign an agreement with the state before he pursues legal action, according to a report from Reuters.

Last month, several Internet service providers signed an agreement with New York to block newsgroups and Web sites where child pornography is distributed. Users complained that several companies blocked all newsgroups instead of narrowly targeting those that distribute child pornography.

Comcast, along with 16 other companies, signed a memorandum of agreement Monday with the National Center for Missing and Exploited Children and the National Association of Attorneys General. It said the ISPs would prevent their servers from hosting sites on an NCMEC list of those containing child pornography. They agreed to report instances of child pornography as required by federal law and to update policies to keep up with emerging sources of child pornography.

The agreement takes effect within 30 days. Other companies that signed are BendBroadband, Bresnan Communications, Bright House Networks, Broadstripe, Cablevision Systems, Charter Communications, Cox Communications, Eagle Communications, GCI, Harron Communications, Insight Communications, Mediacom Communications, Midcontinent Communications, Sjoberg's, Suddenlink Communications, and U.S. Cable. Time Warner Cable previously signed the memorandum of understanding.

In a response to Cuomo's threat, Comcast pointed out that it has signed a national agreement. The state agreement contains more requirements, including a mandate that ISPs contribute funds to prevent the distribution of child pornography online.

As of December, the NCMEC's Child Victim Identification Program had information on more than 1,233 child victims from around the world seen in sexually abusive images. The bureau also has helped seize child pornography collections from more than 11,650 investigations across the country.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Must Reads - September 25, 2014
Dark Reading's new Must Reads is a compendium of our best recent coverage of identity and access management. Learn about access control in the age of HTML5, how to improve authentication, why Active Directory is dead, and more.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2012-5619
Published: 2014-09-29
The Sleuth Kit (TSK) 4.0.1 does not properly handle "." (dotfile) file system entries in FAT file systems and other file systems for which . is not a reserved name, which allows local users to hide activities it more difficult to conduct forensics activities, as demonstrated by Flame.

CVE-2012-5621
Published: 2014-09-29
lib/engine/components/opal/opal-call.cpp in ekiga before 4.0.0 allows remote attackers to cause a denial of service (crash) via an OPAL connection with a party name that contains invalid UTF-8 strings.

CVE-2012-6107
Published: 2014-09-29
Apache Axis2/C does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.

CVE-2012-6110
Published: 2014-09-29
bcron-exec in bcron before 0.10 does not close file descriptors associated with temporary files when running a cron job, which allows local users to modify job files and send spam messages by accessing an open file descriptor.

CVE-2013-1874
Published: 2014-09-29
Untrusted search path vulnerability in csi in Chicken before 4.8.2 allows local users to execute arbitrary code via a Trojan horse .csirc in the current working directory.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
In our next Dark Reading Radio broadcast, we’ll take a close look at some of the latest research and practices in application security.