Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

Google Whacked For Political Secrecy

Official wants Eric Schmidt and company to be more open about electioneering activities.

Its supposed reversal on net neutrality isn't the only controversy dogging Google—now it's drawing heat for practices around campaign contributions.

New York City public advocate Bill de Blasio slammed the company on Thursday for using its treasury money to back candidates and for not fully disclosing direct and indirect contributions.

"You can find almost anything using Google, except for its own political spending," said de Blasio, who noted that most of the search giant's tech industry peers, including Dell, Microsoft, eBay, and Hewlett-Packard, have voluntarily adopted policies against using corporate treasury dollars for political purposes.

To promote his cause, de Blasio created an online video titled "Searching For Transparency," in which he slams Google's clandestine spending.

de Blasio's campaign comes in the wake of a Supreme Court ruling in January that overturned previous restrictions on corporate contributions to political campaigns. In light of the ruling, de Blasio wants companies to be transparent about where their dollars are going. He noted that Google spent $4 million on lobbying in 2009, 50 times the amount it spent in 2003.

"This increased spending comes as investigations by the Federal Trade Commission and Attorneys General from several states are raising questions about how Google may have improperly collected people's private information through their unsecured wireless networks while collecting data for its Street View feature," de Blasio's office said.

de Blasio is urging Congress to pass the Disclose Act, which would require companies to disclose their involvement political ads while prohibiting them from funding certain types of candidate promotions.

Google, meanwhile, continues to fend off criticism that it's reversed its long-time advocacy of network neutrality following a series of closed-doors meetings with Verizon.

Network neutrality advocates say all Internet traffic should be equal, while opponents say carriers should have the right to charge more for bandwidth-hogging content like movies and games and faster delivery speeds.

Google officials did not immediately respond to a request for comment.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Why Cyber-Risk Is a C-Suite Issue
Marc Wilczek, Digital Strategist & CIO Advisor,  11/12/2019
Unreasonable Security Best Practices vs. Good Risk Management
Jack Freund, Director, Risk Science at RiskLens,  11/13/2019
6 Small-Business Password Managers
Curtis Franklin Jr., Senior Editor at Dark Reading,  11/8/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Navigating the Deluge of Security Data
In this Tech Digest, Dark Reading shares the experiences of some top security practitioners as they navigate volumes of security data. We examine some examples of how enterprises can cull this data to find the clues they need.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-11931
PUBLISHED: 2019-11-14
A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prio...
CVE-2019-18980
PUBLISHED: 2019-11-14
On Signify Philips Taolight Smart Wi-Fi Wiz Connected LED Bulb 9290022656 devices, an unprotected API lets remote users control the bulb's operation. Anyone can turn the bulb on or off, or change its color or brightness remotely. There is no authentication or encryption to use the control API. The o...
CVE-2019-17391
PUBLISHED: 2019-11-14
An issue was discovered in the Espressif ESP32 mask ROM code 2016-06-08 0 through 2. Lack of anti-glitch mitigations in the first stage bootloader of the ESP32 chip allows an attacker (with physical access to the device) to read the contents of read-protected eFuses, such as flash encryption and sec...
CVE-2019-18651
PUBLISHED: 2019-11-14
A cross-site request forgery (CSRF) vulnerability in 3xLogic Infinias Access Control through 6.6.9586.0 allows remote attackers to execute malicious and unauthorized actions (e.g., delete application users) by sending a crafted HTML document to a user that the website trusts. The user needs to have ...
CVE-2019-18978
PUBLISHED: 2019-11-14
An issue was discovered in the rack-cors (aka Rack CORS Middleware) gem before 1.0.4 for Ruby. It allows ../ directory traversal to access private resources because resource matching does not ensure that pathnames are in a canonical format.