Australian police criticise 'ethical' hacking demonstration

Summary:Police in Queensland, Australia have spoken out after a researcher demonstrated an 'ethical hack' on a Facebook user account

Police in Queensland, Australia have spoken out against a demonstration of a Facebook privacy hack that took place at the BSides Australia conference on the Gold Coast.

In the demonstration on Tuesday, researcher Christian Heinrich showed how he obtained from Facebook photographs of security contractor Chris Gatford and his family, including the image of a child. Heinrich used a brute-force attack to guess the URLs of privacy-protected images stored on Facebook's content distribution network. The incident led to a journalist being arrested and having his iPad seized, after he published some of the images online.

Following the event, detective superintendent Brian Hay, head of the Fraud and Corporate Crime Group of the Queensland Police Service, criticised the demonstration of a so-called 'ethical hacking'. "I think cultures have built up where hacking, in the past, has been a part of a competition, and you have black-hat conferences around the world. The technical reality is that on those occasions crimes may well have been committed," he said.

For more on this ZDNet UK-selected story, see Qld cops denounce 'ethical hacking' on ZDNet Australia.

Get the latest technology news and analysis, blogs and reviews delivered directly to your inbox with ZDNet UK's newsletters.

Topics: Legal


Stilgherrian is a freelance journalist, commentator and podcaster interested in big-picture internet issues, especially security, cybercrime and hoovering up bulldust. He studied computing science and linguistics before a wide-ranging media career and a stint at running an IT business. He can write iptables firewall rules, set a rabbit tr... Full Bio

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Related Stories

The best of ZDNet, delivered

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.