Slashdot Mirror

← Back to Stories (view on slashdot.org)

FBI Posts Fake Hyperlinks To Trap Downloaders of Illegal Porn

Posted by Soulskill on from the if-you-thought-getting-a-shock-site-link-was-bad dept.

mytrip brings us a story from news.com about an FBI operation in which agents posted hyperlinks which advertised child pornography, recorded the IP addresses of people who clicked the links, and then tracked them down and raided their homes. The article contains a fairly detailed description of how the operation progressed, and it raises questions about the legality and reliability of getting people to click "unlawful" hyperlinks. Quoting: "With the logs revealing those allegedly incriminating IP addresses in hand, the FBI sent administrative subpoenas to the relevant Internet service provider to learn the identity of the person whose name was on the account--and then obtained search warrants for dawn raids. The search warrants authorized FBI agents to seize and remove any "computer-related" equipment, utility bills, telephone bills, any "addressed correspondence" sent through the U.S. mail, video gear, camera equipment, checkbooks, bank statements, and credit card statements. While it might seem that merely clicking on a link wouldn't be enough to justify a search warrant, courts have ruled otherwise. On March 6, U.S. District Judge Roger Hunt in Nevada agreed with a magistrate judge that the hyperlink-sting operation constituted sufficient probable cause to justify giving the FBI its search warrant."

10 of 767 comments (clear)

  1. Nice. by Anonymous Coward · · Score: 5, Interesting

    So if I see some link advertising child porn, and I click it to see if it's fake or something which actually needs to be reported to authorities, now I'm potentially opening myself up to having my computer confiscated and my life turned upside down?

    Guess I'd better let the kids fend for themselves then!

  2. Abuse? by _bug_ · · Score: 4, Interesting

    If someone started masking these kinds of links as legit links and sent them out in e-mails and such you could wind up with a lot of innocent people being raided by the FBI. And then how do you prove you didn't mean to click on the link?

    What about hidden frames that open these kinds of links?

    What about use of javascript, flash, java, or other embedded technology to make http requests in the background?

    It just seems way too easy to get innocent people caught up in this sort of trap.

  3. Re:Stating the obvious problem by syzler · · Score: 5, Interesting

    What if your browser uses link prefetching? Will they then have enough justification to take my computers and smart phone away which would leave me without the ability to work?

  4. Re:Priorities by tekiegreg · · Score: 4, Interesting

    With the "not enough money" part involved, I always wondered what it would take to steal ID's, but only put about $5,000 in debt on each ID, just enough to stay under the radar per ID stolen. With enough ID's stolen here and there, that gets to be real money...a dollar here and a dollar there adds up to a bit over time. The FBI really should look at the smaller cases and I'd bet they'd find some big fish...

    --
    ...in bed
  5. Re:Entrapment? by cthugha · · Score: 4, Interesting

    No. Entrapment is where the State gets you to do something illegal and then charges you for doing that thing. The goal here AIUI was just to get evidence so that search warrants could be obtained to investigate other possible offences.

    Now, that's not to say there are issues here, particularly about:

    • using deception to get people to effectively admit that they're likely to do something bad and whether that infringes the right to silence or right against self-incrimination (in some jurisdictions it might);
    • whether the onus required to get a search warrant was actually satisfied (just because you click one link doesn't necessarily mean that it's likely you've clicked similar links in the past),

    but I don't think it's entrapment.

  6. Re:Stating the obvious problem by erikina · · Score: 5, Interesting

    And lets hope that server never sees the light of day again, not only is helping people find child porn, it's in possesion. Think of the children.

    On a serious note. Am I the only one that scared by these prospects? I don't mind the whole "think of the children", as I'm not a bad/evil/pedophile .. but put in the position, I might have clicked the link. Not because I'm into that stuff, but a combination of curisoity, bordem and just wondering if that stuff exists might have driven me to click it. And according to TFA the mere act of clicking the link constitues "violating federal law, which criminalizes "attempts" to download child pornography with up to 10 years in prison.".

    I probably should have posted this anonymously, but I'm sick of the idea that possesion of some pictures is one of the worst crimes in the world. Sure child abuse is terrible (And I'd have no hesitation against the death penality in severe cases). But having a picture of it? C'mon.

  7. Re:Can you say POLICE STATE by zappepcs · · Score: 4, Interesting

    How about we strive for some open and transparent government. No lobbyists money. Open voting that is monitored by Internet live, not just on TV, and not without feedback. How about we allow ALL legislators the chance to read every proposed law, and receive feedback from their constituents before the votes? How about we allow recall votes on every 8th Tuesday via Internet? How about we put the voting power over new legislation in the hands of the people?

    Yeah, you'll tell me that groupthink is not working, just look at digg or reddit or slashdot and I'll reply back that the overall opinion from those sites *tends* to reflect the average opinion. Limit that to voter registration number IDs and it works. It gives our legislators an instant idea of how the voters want the vote to go.

    Let each legislator call a 48 hour hiatus on any bill movement if there are blips in the Internet voting. Lets set this up and monitor it via the open source methods so that there is always a whistleblower or 5000 to point out flaws. How about we make this the 21st century government of the people, for the people, BY the people?

    Yes, there are problems with that, but doing nothing and leaving the status quo only encourages the ravages to justice that we have been witness to. Change now. I don't just mean presidential party change, I mean change for all of it. The system does NOT fairly represent the populace opinion. That is NOT what the founders wanted. The current system was created to attempt to do that with 18th century technology. We have advanced since then. Lets put some advances in the legislative and governing processes.

    No, I do not advocate bio-ID or anything like that. It's simple, show your papers, get your number, vote. Yes, F/OSS can come up with a voting systme that works AND is able to be monitored. It's not that hard.

    Take the interworkings of government out of the hands of those that would work behind closed doors and ALL will change. Suddenly, you'll have time to put aside the beer to go vote online for a bill that means something to you when it is all transparent and in your face. When it is as easy as logging on at home there will be a LOT of people interested, they will feel empowered. Form letters saying thanks for your input are ridiculously stupid in response to an email... never mind that they are tantamount to being blown off.

    --
    Support NYCountryLawyer RIAA vs People
  8. Re:I would have read the article before replying by NeverVotedBush · · Score: 4, Interesting

    I wonder how many people don't realize the trouble they can get into if someone is piggybacking on their internet connection and doing illegal things.

    You would hope that innocent people would eventually be found innocent after their computer(s) had been ransacked, copied, examined, etc., but there is also the chance that the logs alone would be deemed sufficient.

    People need to understand what kind of liability they open themselves up to by not securing their wireless. Or they need to know that they had better keep excellent logs themselves in order to prove their own innocence, but then that can be turned against them as well if they don't monitor and police for illegal activity.

    The best and easiest way to protect yourself is to lock it up.

  9. Re:I would have read the article before replying by RobertM1968 · · Score: 5, Interesting

    Makes me scared of having "Link Prefetch" enabled in Firefox...

    --
    StarTrekPhase2 - The Five Year Mission Continues!
  10. This happened to me...Sort of by holmedog · · Score: 5, Interesting
    When I was 17-20 my brother and I owned a house together. We would host daily lan parties, weekend beerfests, and other general mischief.

    On any given weekend we would have 10+ people in our house, on our internet. On occasion they would use our computers as well. We had four, so friends could come over and lan.

    Well, all said and done, apparently someone accessed an IRC server/channel that was distributing CP. The department of Emmigration and Internal Customs busted in 3 months later while my wife (gf then) and I were asleep. Pistols in the face, flashlights, the whole nine yards. They confinscated all of my computer equipment, my cat5s, my cds, my wife's home videos, my camera, and my hub. Yep, they even took my hub.

    It took us almost 11 months and tons of paperwork to get our stuff back, even after proving there was no way in hell we were home w hen the supposed infraction occured. No charges were ever pressed, but it cost me $7,000 in lawyer fees (I wasn't fucking around and hired a lawyer as soon as they started asking questions).

    So yeah, this kind of stuff really scares me.