Pakistan has its share of both black and white-hatted hackers, and one of them, a 21-year-old called Rafay Baloch has just identified and written the code for a fix of a major security flaw in the Google Android operating system, which sits at the heart of millions of smartphones worldwide. The bug allows access to private data which can be either sold-on to criminal networks or used to exploit the victim’s computer activity — online banking and credit and debit card purchases for instance. Baloch earns his living as a cyber-bug bounty hunter. He was awarded $10,000 and had the offer of a job from PayPal for detecting vulnerabilities in the online payment system, but it seems he is to get no reward for his efforts — which will have saved Google and Android from a potentially damaging attack — because Android does not have a vulnerability rewards programme, and Baloch does not qualify under the Android Patch Rewards Programme either, which seems unfair to say the very least.
The Google representative in Pakistan has not returned calls regarding this matter and it seems that this is one White-Hat who is not going to get his just reward. Pakistan is just beginning to wake up to the realities of cybercrime, with our systems and networks no less vulnerable to criminal hackers than anywhere else in the world. It is to be hoped that our White-Hats will be able to rise to the challenge.
Published in The Express Tribune, September 21st, 2014.
Like Opinion & Editorial on Facebook, follow @ETOpEd on Twitter to receive all updates on all our daily pieces.
COMMENTS
Comments are moderated and generally will be posted if they are on-topic and not abusive.
For more information, please see our Comments FAQ