Google blocks websites certified by DarkMatter, after Reuters reports

WASHINGTON (Reuters) - Alphabet's GOOGL.O Google has blacklisted websites approved by a United Arab Emirates-based security company after Reuters reports tied the firm to a state hacking operation.

FILE PHOTO: The Google logo is pictured at the entrance to the Google offices in London, Britain January 18, 2019. REUTERS/Hannah McKay/File Photo

Google said last week on a public discussion board that its Chrome and Android browsers would mark as unsafe all websites that had been certified by the UAE security firm DarkMatter.

While Google did not provide a reason for the move, and did not respond to requests for comment, it cited the same decision taken by Firefox browser-maker Mozilla last month

Mozilla said it would block DarkMatter certified websites because of “credible evidence” presented by Reuters and other media reports that the Abu Dhabi-based company had been involved in hacking operations. Mozilla said it was concerned that DarkMatter could use its status as an internet security gatekeeper to launch covert hacking efforts.

Reuters reported in January that DarkMatter provided staff for a secret hacking operation, code named Project Raven, on behalf of a UAE intelligence agency. The unit was largely comprised of former U.S. intelligence officials who conducted offensive cyber operations for the UAE government

Former Raven operatives told Reuters that many DarkMatter executives were unaware of the secretive program, which operated from a converted Abu Dhabi mansion away from DarkMatter’s headquarters.

The program’s operations included hacking into the internet accounts of human rights activists, journalists and officials from rival governments, Reuters found.


DarkMatter has denied being connected to offensive hacking operations, saying the reports of its involvement were based on “false, defamatory, and unsubstantiated statements.”

In order to be considered safe by web browsers, companies need to seek certification from an outside organization, which will confirm their identity and vouch for their security.

But if a surveillance group gained that authority, it could certify fake websites impersonating banks or email services, allowing hackers to intercept user data, security experts say.

Most of the certifying organizations are independent, private companies. Browsers like Firefox allow websites to obtain certification from any approved authority anywhere in the world.

Organizations that want to obtain certifying authority must apply to browser makers like Mozilla and Microsoft.

The major browsers had granted DarkMatter a provisional status to certify the safety of websites in 2017. The company had sought to be recognized as one of around 60 firms with fully recognized status.

Under that provisional status, DarkMatter approved about 275 websites, most of which appeared to be for local firms or companies affiliated with the Abu Dhabi-based security firm itself.

Chrome or Android users visiting those websites are now warned by the browser: “Attackers might be trying to steal your information.”

DarkMatter and its affiliated company DigitalTrust have appealed Mozilla’s decision, which they said was based on “discriminatory practices,” and an “undisclosed conflict of interest.”

DarkMatter did not respond to a request for comment.

Editing by Kieran Murray and Dan Grebler