Slashdot Mirror

← Back to Stories (view on slashdot.org)

Are UK Police Hacking File-Sharers' Computers?

Posted by samzenpus on from the cop-in-the-machine dept.

superglaze writes "Following its takedown earlier this week of the music blog RnBXclusive, the UK's Serious Organised Crime Agency (SOCA) has claimed that "a number of site users have deleted their download histories" in response. Given that the site didn't host copyright-infringing files itself, how do they know? We've asked, but SOCA refuses to discuss its methods. A security expert has pointed out that, if they were hacking using Trojans, the police would themselves have been breaking the law. Added fun fact: SOCA readily admits that the scare message it showed visitors to the taken-down site was written 'with input from industry.'"

23 of 177 comments (clear)

  1. huh? by Anonymous Coward · · Score: 4, Interesting

    "a number of site users have deleted their download histories" What does that even mean? Cleared their IE Browsing History? Deleted their Chome cache? Removed things from FireFox's "Recent Downloads" folder?

    1. Re:huh? by dgatwood · · Score: 4, Interesting

      It probably means that the JavaScript/CSS trick for determining what sites you've visited no longer shows that the IP number of believed downloaders have visited those sites. Which probably just means the government authorities in question don't know what "dynamic IP" means, but I digress....

      --

      Check out my sci-fi/humor trilogy at PatriotsBooks.

  2. Well... by Anonymous Coward · · Score: 5, Insightful

    SOCA, How about a message from the people that pay you, "You are not above the law".

  3. First Rule of Media Manipulation by deweyhewson · · Score: 5, Insightful

    Never let the facts get in the way of good propaganda.

  4. right department for the job by Gravis+Zero · · Score: 5, Funny

    UK's Serious Organised Crime Agency

    The Internet is Serious Business

    --
    Anons need not reply. Questions end with a question mark.
    1. Re:right department for the job by SuricouRaven · · Score: 4, Funny

      Barely.

  5. Browser exploits? by AmiMoJo · · Score: 4, Informative

    Perhaps they were using browser exploits to determine if people had cleared their history or cache. Most (all?) of the major browsers used to allow Javascript to detect if links had been visited, so it could check known pages on the site to see if they had been accessed. Similarly the server can tell if files are in the browser's cache because it doesn't re-download them.

    Combine that information with IP address logs and you know... well, nothing actually, but if the message they posted on the site is anything to go by they either don't understand that or are just lying deliberately. My guess is that this claim is the latter.

    If you look at the site now the threats have been removed, like someone told them to stop breaking the law themselves. The result of IPCC complaints probably.

    --
    const int one = 65536; (Silvermoon, Texture.cs)
    SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    1. Re:Browser exploits? by wvmarle · · Score: 5, Interesting

      This JS history snooping sounds plausible, technically, but maybe not so practically. Besides the question of whether running such a script is legal: how did they manage to run those scrips?

      To run such a history snooping script, a user has to visit a web site that runs said script. It's not likely the torrent site will do this for the authorities. It is also not likely that users will regularly visit anti-piracy web sites. They may visit it once, to get some information or out of curiousity, but well not much to repeat visits for.

      Or is it done by the ISP? Who then would basically inject a js part into web pages the user downloads? Doesn't sound like a nice thing to do, to say the least.

      Besides, such scripts afaik can only do something like "did you visit slashdot.org?": asking for specific URLs. I have not heard of a way to ask a browser "please tell me all sites this user has visited, and all urls which include slashdot.org". The first example shows whether or not the user visited the home page, the second example would give a list of all stories the user has opened, comments they opened, etc. You'd need the second method to be able to query a user's history for specific downloads.

      Information from the browser cache determines whether to redownload a file, but the cache should be site-specific. Even if one site asks to download parts from another site, the browser should just reply "done" when the request is processed, regardless of whether that bit is locally available already or that it had to be downloaded.

      The only legal way to obtain download histories would be if the user has a public profile on a web site that lists that user's download history (not likely) or that they would indeed come with a search warrant, confiscate the user's computer, and analyse its contents (even less likely).

      So all in all this sounds like an illegal hacking action by the UK police.

    2. Re:Browser exploits? by RagingMaxx · · Score: 5, Interesting

      My guess would be that the authorities may have included such a Javascript in the 'scare page' that is currently replacing the regular site. Regular visitors return to the site by following a bookmark, etc, and while the scare page is open in their browser the Javascript runs.

      It would have likely been a part of the initial investigation to either set up a crawler to index the site before it was taken down, or simply pull down the RSS feed of new posts and scrape them for hrefs pointing to mp3s or otherwise. They could thus compile a list of "downloadable" files which had appeared on the blog.

      Once the scare page has been put up, they could use the Javascript on the page to fetch lists of these download URLs, insert them into a hidden div on the page, and check each URL's "visited" status in unpatched browsers, sending the results back to the server asynchronously and logging them along with the IP and any other browser stats of the user in question. In this way they could glean data about which files from the site the current user had downloaded.

      Now, assuming the above is even close to what happened in reality, I would guess that the site in question has had a large number of hits from curious bystanders (ie the slashdot / HN crowd) since the scare page went up, most of whom would have "clean" download histories as they had never visited the site during its operation. Maybe the people gathering stats have misinterpreted this as "lots of users who cleared their download history" before returning to the site.

      Hooray for speculation!

    3. Re:Browser exploits? by dissy · · Score: 4, Insightful

      So basically their illegal shenanigans make the global news (including slashdot), and tens to hundreds of thousands of people world wide go clicking links in the article to see the take down notice.

      They interpret this as tens to hundreds of thousands of returning pirates, who must have cleared their cache and history!

      Now they get to claim the site was WAY more popular in members than it actually was, and some huge conspiracy is going on to keep them hidden and secret.

      In their minds, they are not doing anything wrong, and in fact are heros for this action.
      So why would anyone be upset at rights violations and want to see if the news stories are true?
      That's simply impossible. We are all long time members using the site to download trillions of songs, and we all clear our history daily to avoid getting caught, because their javascriptlet told them so.

      It's almost funny in a way

  6. Serious? by mwvdlee · · Score: 5, Insightful

    If SOCA, Serious Organised Crime Agency dealing with serious organized crime is fighting copyright infringement, then what is the agency called that deals with such things as mobsters, thieves, assassinations and illegal prostitution gangs? Those organized crimes aren't serious enough for SOCA? They sure are causing a lot more harm to the tax-payers.

    --
    Slashdot social media options: AIM, ICQ, Yahoo, Jabber and Mobile Text. Why no MySpace?
    1. Re:Serious? by whyloginwhysubscribe · · Score: 4, Interesting

      It is funny that their take-down notice is copyrighted itself too. They should take-down the zdnet article for re-printing a screenshot of it, and then replace it with the actual page that the screen shot is of.

      It is worth following JackOfKent on twitter for his insight into this. He noted that the take-down notice could actually be a contempt of court.

  7. SOCA - Serious Organised Crime Agency by Nursie · · Score: 5, Insightful

    Jesus.

    These cretins ought to be dealing with people traffickers, gang crime and other actual Serious Organised Crime.

    That they are taking down music sharing sites is ridiculous. The justification I heard recently was even more laughable. It was serious organised crime because it cost the record labels 15 million.

    Ah, record label mathematics, even better than cop math!

    I don't doubt that these sites are hives of illegal activity. What they are not is a serious threat to the British public, which SOCA should be concentrating on, not pissing into the wind trying to clamp down on piracy.

    1. Re:SOCA - Serious Organised Crime Agency by wvmarle · · Score: 5, Funny

      I see you're not a politician, so you see it totally wrong.

      For starters, it's crime. It's murderous even: it kills music, it kills artists, it kills the studios and labels. And it is theft too, of course.

      It's also serious, see above. Murder is a serious crime. So is theft - that's what I see on stickers pasted in shops against shoplifting. "Theft is a serious crime". I'm not going to argue with that, theft is a crime. So is murder. And it's serious.

      And organised those web sites are. A large organisation, with its tentacles all over the place. They have hackers gaining access to unreleased music for them, other hackers that post complete albums or illegal recordings of concerts and whatnot. Well organised they must be, how else could they serve those thousands upon thousands of customers every day.

      So of course it's a task for the SOCA. Drug dealers be damned, that're minor guys, not worth bothering with. But those music thieves must be stopped!

      OK politician mode off. Have a nice day :-)

    2. Re:SOCA - Serious Organised Crime Agency by BlueStrat · · Score: 4, Insightful

      It's simply not possible to stop it, or even slow it down that much.

      Sure you can. You underestimate the lengths they will go to.

      All they have to do, is to do away with the user-controlled general-purpose computer, the open internet, and any individual rights you were under the illusion of having.

      They're already well on the way to accomplishing all of those goals, while many cheer them on.

      Strat

      --
      Progressivism (aka US 'Liberalism'): Ideas so good they need a police/surveillance-state to enforce.
  8. Re:SOCA on the case by biodata · · Score: 4, Funny

    and organised!

    --
    Korma: Good
  9. What Judge? by dutchwhizzman · · Score: 4, Interesting

    What judge granted the 15 million claim? You can't take down people's businesses just because someone claims they are costing them money in illegal damages. If that's the truly a fact, they could sue in court for the losses. Once the losses were validated by a Judge, they could first ask the losses to be paid. If those weren't paid, they could have the assets of the business confiscated. Maybe *then* you would have a case for taking down the website, but not before.

    --
    I was promised a flying car. Where is my flying car?
  10. Prejudiced the prosecution by Anonymous Coward · · Score: 5, Insightful

    What they did there was make a false allegation against him and anyone who downloaded music. He can't now get a fair trial because he's been accused of theft by the police publicly but they haven't brought a theft charge against him confirming it is a false claim.

    They prejudiced his trial.

    So what they need to do at this point is get back within the limits of the law, and stop propagandizing. The police have no place in society as a political campaign group.

    Also they need to recognize that RIAA now represents less than 30% of music sold, and that 2011 was the biggest year for music sales on record. Copyright infringement is copyright infringement, it's dealt with by copyright laws, not theft laws. The only input they should be seeking on a take down notice is LEGAL input on the LAWS as they stand in the UK. Nothing else.

    http://blog.nielsen.com/nielsenwire/consumer/cue-the-music-driven-by-digital-music-sales-up-in-2011/

    What will happen now, is those false claims they made will be used in court as evidence of police misrepresentation of evidence.

  11. When the cops hack your computer ... by Taco+Cowboy · · Score: 5, Insightful

    ... it's legal, and you end up in jail

    When you hack cops' computers, it's illegal, and you end up in jail

    Head you lose, tail, you also lose

    --
    Muchas Gracias, Señor Edward Snowden !
    1. Re:When the cops hack your computer ... by dryeo · · Score: 5, Interesting

      Actually the whole feudal idea of felons and the segregation that goes with it is pretty disgusting. Basic rights should only be able to be taken away by the judiciary using due process. Even the American Constitution writers reconized that, which is why they have the ban on letters of attainment.
      America and Nigeria I believe are the only countries still with the idea that whole classes of citizens should lose rights permanently for doing something stupid when young, even after they've payed the price.

      --
      https://en.wikipedia.org/wiki/Inverted_totalitarianism
  12. Re:So write them a letter if you are not in the UK by Xest · · Score: 5, Insightful

    Write them a letter if you are in the UK even. In fact, it'll probably be more effective.

    Personally for me, as a British citizen living in the UK, admittance by a police officer that my PC may have been hacked simply for visiting a site linked in a news article gives me all the justification I feel I need to submit a formal complaint to the IPCC and to my MP.

    Whether it has or not, and whether the officer knew what he was on about is neither here nor there, the fact he believes that it's legitimate policing needs to be stamped right out.

  13. Re:So write them a letter if you are not in the UK by TheRaven64 · · Score: 5, Informative

    If it is an admission by a police officer, then don't write to SOCA, write to the IPCC, who have the power to investigate claims of misconduct by members of SOCA.

    --
    I am TheRaven on Soylent News
  14. My letter to SOCA by ODBOL · · Score: 4, Interesting

    Here's what I sent them. If I had been wider awake, I would have skipped the last paragraph. I enjoyed writing it, but sarcasm is almost always counterproductive.

    Dear SOCA,

    When I saw the takedown notice at RnBXclusive, I was sure that it was a spoof. The bald statements about the guilt of "the individuals behind this website," apparently unproved in court, the threats of prosecution to myself, and the speculative claims about the "future of the music industry," seemed too absurd to be written by a serious law enforcement agency. Then, the advertisement for pro-music.org at the end made it clear that this was either a spoof by pro-music, or more likely by an opponent trying to embarrass pro-music.

    I was astonished to find acknowledgment on your own web site that this absurd text was indeed your own.

    I never heard of RnBXclusive before, and have no opinion whatsoever regarding the legality of the behavior of "the individuals behind" that website, nor your takedown of the site and reported arrest of the "individuals." But I hope that you will be more careful in the future to post only relevant and sensible notices that stay well within the scope of your legal mission.

    I recommend to you the Electronic Frontier Foundation (www.eff.org) as a source of careful analysis of online behavior by individuals, corporations, governments, and law enforcement agencies. They do not appear to have posted any specific comments about RnBXclusive, SOCA, or your recent arrest and DNS takeover, but they can provide some of the best advice available when consulted.

    If you must advertise legal sources of music downloads, let me recommend my favorite, magnatune.com, which is not represented by those "behind" the pro-music.org website, and which will perhaps suffer competitively from your public endorsement of pro-music.org.

    Sincerely Yours,

    Michael J. O'Donnell
    The University of Chicago

    --
    Mike O'Donnell http://people.cs.uchicago.edu/~odonnell/