The Malta Independent 13 September 2024, Friday
View E-Paper

KSU calls for urgent legislative reform to protect ethical hacking

Wednesday, 4 September 2024, 19:47 Last update: about 8 days ago

The University of Malta's student council - Kunsill Studenti Universitarji (KSU) - is calling for "urgent legislative reform" to be conducted to define and protect ethical hacking. In its statement, KSU offered its solidarity, and financial assistance, to the four people accused in the FreeHour hacking case.

KSU stated that "this situation demonstrates a clear gap in Malta's current legislative framework surrounding ethical hacking and cybersecurity, one which necessitates urgent legislative reform."

In October 2022, three students, Giorgio Grigolo, Michael Debono, and Luke Bjorn Scerri, and their lecturer, Mark Joseph Vella, had found "serious security vulnerabilities" in the popular FreeHour student timetable mobile application. Upon these findings, the group informed the company about these security flaws and requested a "bug bounty" - a common reward practice in ethical hacking.

The group of four were then arrested, strip-searched, and had all their computer equipment seized by the authorities. The four accused are now facing charges which can carry a sentence of up to four years imprisonment.

KSU are now calling for legislative changes to "clearly define and protect ethical hacking activities" to ensure that "individuals who responsibly disclose security vulnerabilities receive legal protection and support," rather than face negative repercussions, such as criminal charges.

"Such reforms would encourage a culture of transparency and collaboration in strengthening digital security, while safeguarding the rights and interests of those acting in good faith to prevent potential breaches," KSU wrote in its statement.

After consulting relevant stakeholders from this case, the student representation has positioned itself in solidarity of the four persons accused. The University's student council has recognised the group's "well-intentioned effort to protect the data of thousands of students, many of whom are minors, from potential exploitation."

In a show of support, the University's student council has decided to express its support to the accused by offering them financial assistance "to ensure the accused have access to legal representation." KSU remarked that as their respective student body, it has the duty to "provide support and mitigate the negative ramifications this case may have on their academic and professional futures."

This statement has so far been endorsed by 27 student organisations and several student representatives.


 

  • don't miss