An anonymous reader writes: Dejan Orning, Slovene student of Faculty for criminal justice and security, warned Slovenian police department of vulnerabilities in their, supposedly secure, communication system TETRA in 2013. He discovered that the system, which was supposed to provide encrypted communication, was incorrectly configured. As a result lots of communication could be intercepted with a 25$ piece of equipment and some software. To make matters worse, the system is not used just by the police, but also by military, military police, IRS, department of corrections and a few other governmental institutions which rely on secure communications.
After waiting for more than two years for a reaction, from police or Ministry of Interior and getting in touch with security researchers at the prestigious institute Jozef Stefan, he eventually decided to go public with his story.
Police used evasive tactics after that. Denying his allegations (even though he submitted proof). They also claimed that none of the communication that wasn't encrypted was "problematic" in security sense. The police and Ministry of interior then launched internal investigation, which then confirmed Orning's findings and revealed internal communications problems between the departments. Finally Orning has been subject to a house search by the police, during which his computers and equipment that he used to listen in on the system were seized. Police also found a "counterfeit police badge" during the investigation. All along Orning was offering his help with securing the system.
On may 11th Orning received a prison sentence of 15 months suspended for duration of three years, provided that he doesn't repeat any of the offenses for which he was found guilty (illegal access of the communications system). He can appeal this judgement.
(Link to the story is in Slovene language)