Recent Articles

Wireless Network Security Takes A Hit
Fair warning, everyone: due to the work of a Russian security company called ElcomSoft, wireless networks are looking rather less safe than they have in the past. ElcomSoft's researchers claim to have sped up the...

Google's Wireless Network Patent
While we all thought Google's Android was merely a way for Google to make it easier for is AdWords ads to appear on your cell phone, a new patent filing could...

Decrease In Network Security Attacks
The Aberdeen Group just told me that they released a free report on a decrease in network threats. The highlights are: Best-in-Class companies reported...

Hackers Attack The LHC
The shiny new Large Hadron Collider has been hacked, with hackers taking over the Compact Muon Solenoid detector. The hacker group 2600 of the Greek Security...



10.27.08

Belgium Outlaws Hacker Tools, Leaves Security Holes Open

By Dan Morrill

When good laws go bad, Belgium opens the door to some seriously fun Google Hacking, by outlawing tools, but not addressing poor security measures in the first place.

Google hacking is a great way of testing to see if a company has properly secured their organization against hackers. Most information security departments routinely (and if they are not, please start doing so) Google hack themselves to make sure that nothing shows up in the Google search engine that should not be there. Johnny I hack stuff is also a well-known database of some of the more entertaining Google hacks out there.

What happens though when an otherwise good law that outlaws hacker tools, leaves behind a government infrastructure that is rife with security holes, but researchers cannot work with government or law enforcement to fix those holes? Het Laatste Nieuws is testing the theory by using Google to see what kinds of security flaws are available against Belgium government web sites, and they are finding many decent holes, just by using Google.

From credit, debit, gift cards, checks and
more, give your customers the payment
options they demand. Click here

One of the major Flemish newspapers Het Laatste Nieuws, one million readers, has done some Google-researching against the site of the national police. They have found passwords for national police databases, names, and addresses of even more or less secret special brigades of the national police and how to make a police card. There is lots of such information on the Belgian internet and not only because they did not secure themselves against the total Google indexing (robot file and pass wording the access) but because information is put sometimes on the internet without any reflection. Source: Belsec. Grammar cleaned up in this quote.

The interesting part is that the Police are trying to suppress the information that is being found in Google. The drawback is that to use anything else in Belgium would be against the law, but this does not mean that hackers are not infiltrating and p0wning the sites on a regular basis. This is interesting all the way around because this was probably an unintended consequence to outlawing tools in a country. Hackers probably already own the systems, which will make government systems malware delivery systems, or worst yet, the information in those systems will be altered, or used as a springboard into other more sensitive systems on the internet.

Comments


About the Author:
Dan Morrill has been in the information security field for 18 years, both civilian and military, and is currently working on his Doctor of Management. Dan shares his insights on the important security issues of today through his blog, Managing Intellectual Property & IT Security, and is an active participant in the ITtoolbox blogging community.
About NetworkNewz
NetworkNewz editors, writers and contributors focus on both the big picture and the details of networking. At NetworkNewz our goal is to deliver to you The Key To Network Management.





NetworkNewz is brought to you by:

SecurityConfig.com NetworkingFiles.com
ITmanagementNews.com WebProASP.com
DatabaseProNews.com SQLProNews.com
ITcertificationNews.com SysAdminNews.com
LinuxProNews.com WirelessProNews.com
CProgrammingTrends.com ITmanagementNews.com





-- NetworkNewzis an iEntry, Inc. publication --
iEntry, Inc. 2549 Richmond Rd. Lexington KY, 40509
2008 iEntry, Inc. All Rights Reserved Privacy Policy Legal

archives | advertising info | news headlines | newsletters | comments/feedback | submit article


The Keys To Network Management Ask Questions in the Networking Forum NetworkNewz News Archives About Us Feedback NetworkNewz Home Page About Article Archive News Downloads WebProWorld Forums Jayde iEntry Advertise Contact