STE WILLIAMS

Wikileaks insiders break away from ‘Emperor’ Assange

OpenLeaks opens on Monday.

Fed up with what they perceive as autocratic leadership, former members of St Julian d’Assange’s core inner circle at WikiLeaks will start a breakaway site on Monday called OpenLeaks. The site will act as an intermediary between whistleblowers and the press, reports Dagens Nyheter.

Defectors include Daniel Domscheit-Berg, otherwise known as Daniel Schmitt, who made a high-profile exit from WikiLeaks in September, and Herbert Snorrason, an Icelandic student. Both resigned in September. Snorrason is quoted as telling Assange, in an online chat log acquired by WiReD:

And you’re not even fulfilling your role as a leader right now. A leader communicates and cultivates trust in himself. You are doing the exact opposite. You behave like some kind of emperor or slave trader.

Snorrason’s departure was fomented by this declaration from Assange:

I am the heart and soul of this organization, its founder, philosopher, spokesperson, original coder, organizer, financier and all the rest. If you have a problem with me, piss off.

And he did.

According to the Swedish newspaper, the former inner circle “were dissatisfied with the operation’s association with Assange’s personal problems and how he used the organisation in his explanation of the criminal charges.”

Assange handed himself in to police earlier this week, and is remanded in London pending an extradition hearing next week following a request from the Swedish authorities which want to speak to him in relation to two alleged sexual offences. ®

Dutch Police Arrest 16yr-old WikiLeaks Avenger

Dutch police said they have arrested a 16-year-old boy for participating in web attacks against MasterCard and Visa as part of a grassroots push to support WikiLeaks.

A press release issued on Thursday (Google translation here) said the unnamed boy confessed to the distributed denial-of-service attacks after his computer gear was seized.

He was arrested in The Hague, and is scheduled to be arraigned before a judge in Rotterdam on Friday. It is the first known report of an arrest in the ongoing attacks, which started earlier this week.

The arrest came shortly after anonops.net, a Netherlands-hosted website used to coordinate attacks against companies perceived as harming WikiLeaks, was taken offline. A Panda Security researcher said the website was itself the victim of DDoS attacks, but the investigation by the Dutch High Tech Crime Team has also involved “digital data carriers,” according to the release.

It didn’t specify the crimes the boy was charged with or say exactly what his involvement in the attacks was.

According to researchers, the Low Orbit Ion Cannon tool, which thousands of WikiLeaks sympathizers are using to unleash the DDoS attacks, takes no steps to conceal their IP addresses. It wouldn’t be surprising if attackers who used the application from internet connections at their home or work also receive a call from local law enforcement agencies. ®

Ballmer Proposed $15bn Facebook Acquisition

Microsoft’s reported to have conceded it once tried to buy Mark Zuckerberg’s Facebook for $15bn.

Steve Ballmer, Microsoft’s chief executive, made two trips meet Zuckerberg at the company’s HQ in Palo Alto, California, where he popped the proposal during a long walk.

The tease Zuckerberg rebuffed Ballmer, as he wanted to keep control of Facebook according to a report here on TechCrunch.

Microsoft instead settled for a $240m investment in Facebook in October 2007, giving it 1.6 per cent of the company and the “opportunity to further collaborate as advertising partners.” Facebook at the time was calculated to be headed towards revenue of $150m.

Fritz Lanman, Microsoft’s senior director of corporate strategy and acquisitions, detailed the story on stage during discussion at the Le Web 2010 in Paris, France.

Lanman is the first person from Microsoft to confirm the company had tried to buy Facebook, a tale first told in David Kirkpatrick’s book The Facebook Effect.

Today, Microsoft has added Facebook to its Bing search engine and offered a version of web-based Word to Facebook users that’s called Docs.com.

You can soak up the full account of what went down on the long but frustrating walk here. ®

Gunshot Sensors Used in UK for First Time

Sensors which can detect gunshots being fired have been installed in areas of Birmingham.
Pistol

The scheme has been used in 50 US cities since 1995

It is the first time the Shotspotter Gunshot Location System has been installed in the UK.

It has been used across 50 US cities since 1995 and can pick up gunshots within a 25 metre (82ft) radius.

West Midlands Police say the sensors had been placed on high buildings mainly in northwestern areas of the city.

Project Safe And Sound records an audio clip and sends police a GPS location.

A specially trained police officer listens to the clip to decide whether a firearms team should be deployed.

A spokesman for West Midlands Police said: “The technology is designed to detect the sound of gunshot fire and will enable police to despatch officers to the scene in a timely and effective manner.

“The technology is not surveillance equipment and does not monitor or record actions or movements of individuals within the community.

“The overall aim of the project is to reduce gun crime and potentially save lives.”

CCTV cameras

CCTV cameras had to be scrapped after local residents were not consulted

The system can detect whether multiple shots were fired and whether they were fired on the move.

The manufacturers claim an 85% accuracy rate.

Residents have been consulted about the scheme which will include the Aston and Handsworth areas of the city where gun crime has been a problem in the past.

Last month the force agreed to scrap surveillance cameras installed in parts of the city with large Muslim populations after they failed to consult local people.

Police are not revealing exactly where the sensors have been placed or what they look like.

They maintain that there is no surveillance issue because the sensors record decibels and not individual voices.

WikiLeaks supporters milk Twitter API in DDoS attacks

WikiLeaks supporters are milking Twitter’s application programming interface to carry out attacks that have led to crippling slowdowns at MasterCard.com, Visa.com and other websites that cut off funding to the whistle-blower outfit.

A relatively new Java-based version of the Low Orbit Ion Cannon, which protesters use to direct torrents of traffic at sites they disapprove of, allows users to specify a Master Twitter ID, according to a Thursday post on the Sans blog. It’s the first time the point-and-click attack tool has included the Twitter field, security researchers said.

“The Twitter angle in this application piqued my interest,” Sans handler on Duty, Mark Hofman, wrote. “It is using the Twitter API in a new and creative way, certainly one that hadn’t readily occurred to me.”

He didn’t say exactly what JavaLOIC did with Twitter’s API, but Jose Nazario, senior manager of security research at Arbor Networks, speculated it probably coordinated the timing and targets of attacks. If so, it wouldn’t be the first time Twitter has been used as a command and control channel for corralling large networks of PCs. There are even tools available to streamline the configuration of Twitter-based C&Cs.

Sophos has more more additional details about LOIC, including its Twitter feature, here.

Other versions of LOIC use internet relay chat channels to coordinate attacks. Volunteers install the program and then enter the address of an IRC server. From there, organizers are able to instruct thousands of machines to march in lock step as they attack websites. The ability to turn on and off huge amounts of traffic quickly makes the attacks much harder to defend against.

Sean-Paul Correll, a threat researcher with Panda Security, said at the height of the attacks on Wednesday, there were more there 3,000 machines participating in LOIC-based attacks against MasterCard, Visa, PayPal and other sites that cut off services used to fund WikiLeaks. He also observed independent botnets with as many as 30,000 compromised computers also participating in the attacks.

The attacks have wreaked a fair amount of damage. By Correll’s estimate, MasterCard has suffered more than 32 hours of downtime since Tuesday, with 23 of those hours being almost continuous. Parts of Visa’s site saw more than 21 hours of downtime. The most crippling attack on Visa started a little before 1pm California time on Wednesday, when organizers transmitted a command over IRC to flood the site with more traffic than it could handle.

“It was down instantly,” he told The Register. “As soon as they started pointing the servers over to it, it was toast.”

Visa and MasterCard representatives have said no customer data has been accessed as a result of the attacks, and transactions have been able to go normally. Still, it was widely reported that MasterCard’s Securecode service for secure online transactions was offline for much of Wednesday.

Nazario said as the attacks have progressed many have begun attacking targets’ backend servers, where damage is often more severe despite it being less obvious to outside observers.

“If you can’t load the Visa homepage, so what,” he explained. “But if the backend for some of these sites is down, where it integrates with other vendors or other sites, then they have a problem. That’s what [the attackers] seem to be trying to do now as a way of shutting down their ability to take and make payments.”

WikiLeaks sympathizers aren’t the only ones getting into the denial-of-service game. Anonops.net, a site used to by organizers of the attacks, was itself taken down on Wednesday night, Correll said. At time of writing, it was inaccessible. ®

Hacker Attack WikiLeaks foes

LONDON — In a campaign that had some declaring the start of a “cyberwar,” hundreds of Internet activists mounted retaliatory attacks on Wednesday on the Web sites of multinational companies and other organizations they deemed hostile to the WikiLeaks antisecrecy organization and its jailed founder, Julian Assange.

Within 12 hours of a British judge’s decision to deny Mr. Assange bail in a Swedish extradition case, attacks on the Web sites of WikiLeaks’s “enemies,” as defined by the organization’s impassioned supporters around the world, caused several corporate Web sites to become inaccessible or slow down markedly.

Targets of the attacks, in which activists overwhelmed the sites with traffic, included the Web site of MasterCard, which had stopped processing donations for WikiLeaks; Amazon.com, which revoked the use of its computer servers; and PayPal, which stopped accepting donations for Mr. Assange’s group. Visa.com was also affected by the attacks, as were the Web sites of the Swedish prosecutor’s office and the lawyer representing the two women whose allegations of sexual misconduct are the basis of Sweden’s extradition bid.

On Thursday, Gregg Housh, an activist with the loosely affiliated group of so-called hacktivists, said the group was redoubling its efforts to bring down PayPal, which is better protected than some other sites. The assertion was backed up by an independent security analyst who closely monitors the Internet and saw evidence of the onslaught.

No other major Web sites appeared to be suffering disruptions in service early Thursday, however, suggesting that the economic impact of the attacks was limited.

The Internet assaults underlined the growing reach of self-described “cyberanarchists,” antigovernment and anticorporate activists who have made an icon of Mr. Assange, a 39-year-old Australian.

The speed and range of the attacks Wednesday appeared to show the resilience of the backing among computer activists for Mr. Assange, who has appeared increasingly isolated in recent months amid the furor stoked by WikiLeaks’s posting of hundreds of thousands of secret Pentagon documents on the wars in Afghanistan and Iraq.

Mr. Assange has come under renewed attack in the past two weeks for posting the first tranche of a trove of 250,000 secret State Department cables that have exposed American diplomats’ frank assessments of relations with many countries, forcing Secretary of State Hillary Rodham Clinton to express regret to world leaders and raising fears that they and other sources would become more reticent.

The New York Times and four other news organizations last week began publishing articles based on the archive of cables made available to them.

In recent months, some of Mr. Assange’s closest associates in WikiLeaks abandoned him, calling him autocratic and capricious and accusing him of reneging on WikiLeaks’s original pledge of impartiality to launch a concerted attack on the United States. He has been simultaneously fighting a remote battle with the Swedish prosecutors, who have sought his extradition for questioning on accusations of “rape, sexual molestation and forceful coercion” made by the Swedish women. Mr. Assange has denied any wrongdoing in the cases.

American officials have repeatedly said that they are reviewing possible criminal charges against Mr. Assange, a step that could lead to a bid to extradite him to the United States and confront him with having to fight for his freedom on two fronts.

The cyberattacks in Mr. Assange’s defense appear to have been coordinated by Anonymous, a loosely affiliated group of activist computer hackers who have singled out other groups before, including the Church of Scientology. Last weekend, members of Anonymous vowed in two online manifestos to take revenge on any organization that lined up against WikiLeaks.

Anonymous claimed responsibility for the MasterCard attack in Web messages and, according to Mr. Housh, the activist associated with the group, conducted waves of attacks on other companies during the day. The group said the actions were part of an effort called Operation Payback, which began as a way of punishing companies that tried to stop Internet file-sharing and movie downloads.

Mr. Housh, who disavows a personal role in any illegal online activity, said that 1,500 supporters had been in online forums and chat rooms organizing the mass “denial of service” attacks. His account was confirmed by Jose Nazario, a senior security researcher at Arbor Networks, a Chelmsford, Mass., firm that tracks malicious activity on computer networks.

Most of the corporations whose sites were targeted did not explain why they severed ties with WikiLeaks. But PayPal issued statements saying its decision was based on “a violation” of its policy on promoting illegal activities.

Paul Mutton, a security analyst at netcraft, a British Internet monitoring firm, confirmed Mr. Housh’s account of the renewed attack on PayPal Thursday and said it had caused sporadic outages through the day. A spokesman for PayPal was not immediately reachable to confirm or deny the accounts.

The sense of an Internet war was reinforced Wednesday when netcraft reported that the Web site being used by the hackers to distribute denial-of-service software had been suspended by a Dutch hosting firm, Leaseweb.

A sense of the belligerent mood among activists was given when one contributor to a forum the group uses, WhyWeProtest.net, wrote of the attacks: “The war is on. And everyone ought to spend some time thinking about it, discussing it with others, preparing yourselves so you know how to act if something compels you to make a decision. Be very careful not to err on the side of inaction.”

Mr. Housh acknowledged that there had been online talk among the hackers of a possible Internet campaign against the two women who have been Mr. Assange’s accusers in the Swedish case, but he said that “a lot of people don’t want to be involved.”

A Web search showed new blog posts in recent days in which the two women, identified by the Swedish prosecutors only as Ms. A. and Ms. W., were named, but it was not clear whether there was any link to Anonymous. The women have said that consensual sexual encounters with Mr. Assange became nonconsensual when he stopped using condoms.

The cyberattacks on corporations Wednesday were seen by many supporters as a counterstrike against the United States. Mr. Assange’s online supporters have widely condemned the Obama administration as the unseen hand coordinating efforts to choke off WikiLeaks by denying it financing and suppressing its network of computer servers.

Mr. Housh described Mr. Assange in an interview as “a political prisoner,” a common view among WikiLeaks supporters who have joined Mr. Assange in condemning the sexual abuse accusations as part of an American-inspired “smear campaign.”

Another activist used the analogy of the civil rights struggle for the cyberattacks.

“Are they disrupting business?” a contributor using the name Moryath wrote in a comment on the slashdot.org technology Web site. “Perhaps, but no worse than the lunch counter sit-ins did.”

John Markoff and Ashlee Vance contributed reporting from San Francisco, and Alan Cowell from Paris.

Mastercard downed by Anon-Assange-fans

Mastercard is feeling the wrath of the internet this afternoon – its website and at least part of its payment systems have apparently been brought down by a denial of service attack.

The credit card company is being typically cryptic – its most recent statement said only that it is “is experiencing heavy traffic on its external corporate website”, which is a nicely understated way to describe an overwhelming DDoS assault.

The statement added: “We are working to restore normal speed of service. There is no impact whatsoever on our cardholders’ ability to use their cards for secure transactions.”

However the Reg has been contacted by merchants down under who are currently unable to access the payment portal on Mastercard’s private network – a far more serious breach of security than just downing a website.

This blog also suggests that Mastercard’s 3D Secure system is not working either.

The hack attack is being claimed by Operation Payback, as revenge for Mastercard’s decision to shut down payments to Wikileaks in the wake of its publishing US diplomatic cables.

Operation Payback has itself come under DDoS attack from ‘patriot’ hackers. Presumably pro-Assange hackers have taken out Senator Lieberman’s personal site.

PayPal was targeted for similar reasons, but was functioning at the time of writing.

Mastercard’s PRs were unable to confirm any attack on payments systems but have promised us a more up-to-date statement. We’ll update this story should we receive one.

Pro-Wikileaks hacktivistas in DDoS dustup with patriot contras

Online hacktivist collective Anonymous, operating under the banners Operation:Payback and “Operation Avenge Assange” have launched a series of DDoS attacks against organisations and people seen as being opposed to Wikileaks and its spokesman Julian Assange.

Meanwhile, Operation:Payback itself has been subjected to counter-DDoS attacks thought to originate with US “patriotic” contra-hacktivistas.

Sites attacked by the Anonymous group have included PostFinance.ch, belonging to the Swiss bank which recently froze an account controlled by Assange, and also ThePayPalblog.com – the main blog operated by PayPal, targeted for refusing to process Wikileaks contributions. DNS outfit EveryDNS has also come into the Operation:Payback gunsights for cutting off Wikileaks’ DNS service, saying that online attacks targeted at the leak site were crippling its other customers.

Over the last couple of days, other sites have been DDoS’d for various reasons by the Anonymous group, including the Swedish lawyers representing the women Assange is alleged to have committed sexual offences against. Charges made by Swedish prosecutors have since resulted in the issue of a European arrest warrant and Assange was yesterday cuffed in London: British judges have elected to refuse bail and the colourful Wikileaks impresario is now in jail pending an extradition hearing.

This process has angered the members of Operation:Payback sufficiently that they have also elected to mount strikes against the website of the Swedish prosecutors’ office and briefly, according to anonymous* claims received by the Reg, against Interpol. (Interpol did issue a “Red Notice” calling for Assange’s arrest at the behest of Swedish authorities, but in fact this has no relevance for British police dealing with a request from another EU nation: in such cases a European warrant is required for the UK cops to act.)

Yesterday, the Anonymous hacktivists decided to attack the site of US Senator Joe Lieberman as well, presumably as a result of remarks he has made describing Wikileaks operations as crimes violating the US Espionage Act – and hinting that Wikileaks’ mainstream-media partners, collaborating on trawling and redacting files prior to public release, have violated the law also.

Some Operation:Payback members also elected to attack the site of former Alaska governor and vice-presidential candidate Sarah Palin for suggesting that Assange should be hunted down like a terrorist.

The Anonymous attacks have been run on through a chatroom, with users attaching their computers to a voluntary botnet for use in the DDoS strikes. Panda Security reported that as the Lieberman attacks began there were almost 1,000 users in the chatroom and nearly 600 machines in the botnet.

Naturally enough Operation:Payback itself has been subject to counter-DDoS efforts of varying strength almost since it began, but following the decision to attack Lieberman’s official US government site the Anonymous operation began to be hit much harder and suffered dozens of outages itself, one lasting almost two hours. Panda Security analysts assessed that the intensified counter-DDoS attacks were coming from self-described American “patriot” hackers – playing contra to the Anonymous hacktivistas, perhaps.

Meanwhile US Army private soldier Bradley Manning, believed to have supplied not only the vast stash of diplomatic cables now being drip-fed by Wikileaks but most of its previous significant material as well (the Baghdad gunship videos, Iraq and Afghanistan “war logs” etc) remains in military prison charged with an array of security violations. His name is seldom mentioned any more in the ongoing saga of Wikileaks, Assange and the online scufflers aligned with and against them.

Operation:Payback uses a banner quote from John Perry Barlow, a founder of the Electronic Frontier Foundation:

“The first serious infowar is now engaged. The field of battle is WikiLeaks. You are the troops.”

Some context for the online teacup “war” might be provided by the tiny size of the Anonymous volunteer botnet compared to today’s heavyweight criminal bot networks. There wasn’t even an attempt to actually attack PayPal, just its corporate blog. ®

Bootnote

*These emails were purportedly from Anonymous, but naturally we can’t vouch for their authenticity. As the faceless informant put it (this is verbatim):

Anyone using a name and claiming to represent Anonymous is a charloten, a fraud, a 13 year old basement dweller surrounded by crusty socks and empty Dew bottles, seeking glory among his friends on Tumblr.

PayPal banned WikiLeaks after US gov intervention

Updated A PayPal executive said his company’s decision to suspend payments to Wikileaks came after the US State Department said the whistle-blower site was engaged in illegal activity. The comment came shortly before PayPal agreed to release the remaining funds in the WikiLeaks fund-raising account.

Press accounts from The Guardian and TechCrunch differ, but both claim that PayPal’s move was influenced by statements from the State Department.

“State Dept told us these were illegal activities,” PayPal VP of platform Osama Bedier told the LeWeb conference in Paris, according to this report from The Guardian. “It was straightforward. We … comply with regulations around the world, making sure that we protect our brand.”

TechCrunch reported much the same thing but later updated its post to say: “After talking to Bedier backstage, he clarified that the State Department did not directly talk to PayPal.” He went on to say that the online payment service was influenced by a November 27 letter State Department officials sent Wikileaks founder Julian Assange and his attorney.

“As you know, if any of the materials you intend to publish were provided by any government officials, or any intermediary without proper authorization, they were provided in violation of US law and without regard for the the grave consequences of this action,” the letter, signed by State Department legal adviser Hongju Koh, stated. “As long as WikiLeaks holds such material, the violation of the law is ongoing.”

The letter didn’t cite any specific US statutes WikiLeaks was violating.

WikiLeaks went on to release a trove of State Department memos that aired confidential diplomatic communications.

PayPal representatives didn’t respond to emails seeking clarification about the influence of the State Department.

But late on Wednesday, PayPal General Counsel John Muller said: “While the account will remain restricted, PayPal will release all remaining funds in the account to the foundation that was raising funds for WikiLeaks. According to The Washington Post, there was about $80,000 in the account.

Muller went on to defend the permanent closure of the account by saying the online payment site is “required to comply with laws around the world.”

“Ultimately, our difficult decision was based on a belief that the WikiLeaks website was encouraging sources to release classified material, which is likely a violation of law by the source,” he continued.

Muller’s argument made no mention of organizations such as the International Tibet Network, which continues to solicit donations through PayPal even though some of their activities almost surely violate Chinese laws.

Over the past few days, other financial services, including Visa, MasterCard, and the Swiss bank Post Finance, have also suspended services to Wikileaks and Assange. The move has prompted criticism on Twitter and elsewhere by users who point out that Visa and MasterCard still permit payments to Ku Klux Klan groups but not to a group that so far has been charged with no crime.

Distributed denial of service attacks by people sympathetic to Wikileaks soon took out MasterCard and were also reported against EveryDNS.net, which suspended one of WikiLeaks domain names. US Senator Joe Lieberman and Sarah Palin – both outspoken WikiLeaks critics – and Swedish prosecutors, who are investigating Assange for alleged sexual offenses, have also been targeted, according to reports. A PayPal blog was also disrupted by attacks.

The Register has asked Visa and MasterCard to comment. This post will be updated if either responds. ®

Assange Arrested

LONDON – WikiLeaks founder Julian Assange was arrested and jailed without bail Tuesday in a sex-crimes investigation, but his organization scarcely missed a beat, releasing a new batch of the secret cables that U.S. officials say are damaging America’s security and relations worldwide.

A month after dropping out of public view, the 39-year-old Australian surrendered to Scotland Yard to answer a warrant issued for his arrest by Sweden. He is wanted for questioning after two women accused him of having sex with them without a condom and without their consent.

Assange said he would fight extradition to Sweden, setting the stage for what could be a pitched legal battle. And as if to prove that it can’t be intimidated, WikiLeaks promptly released a dozen new cables, including details of a NATO defense plan for Estonia, Latvia and Lithuania that made Russia bristle.

The Pentagon welcomed Assange’s arrest.

“That sounds like good news to me,” U.S. Defense Secretary Robert Gates said on a visit to Afghanistan.

WikiLeaks spokesman Kristinn Hrafnsson insisted Assange’s arrest and the decision Tuesday by both Visa and MasterCard to stop processing donations to the group “will not change our operation.” Hrafnsson said the organization has no plans yet to make good on its threat to release en masse some of its most sensitive U.S. documents if it comes under attack.

At a court hearing in London, Assange showed no reaction as Judge Howard Riddle denied him bail while he awaits an extradition hearing Dec. 14. The judge said Assange might flee if released. When the judge asked him whether he would agree to be extradited, Assange said: “I do not consent.”

It was not publicly known which jail Assange was sent to, since British police never reveal that for privacy and security reasons. Some prisoners occasionally get Internet access, though only under close supervision.

The U.S. government is investigating whether Assange can be prosecuted for espionage or other offenses. On Tuesday, Pentagon and State Department officials said some foreign officials have suddenly grown reluctant to trust the U.S. because of the secrets spilled by WikiLeaks.

“We have already seen some indications of meetings that used to involve several diplomats and now involve fewer diplomats,” said State Department spokesman P.J. Crowley. “We’re conscious of at least one meeting where it was requested that notebooks be left outside the room.”

Pentagon spokesman Col. Dave Lapan said the military had seen foreign contacts “pulling back.”

“Believing that the U.S. is not good at keeping secrets and having secrets out there certainly changed things,” Lapan said.

During the hour-long court hearing in London, attorney Gemma Lindfield, acting on behalf of the Swedish authorities, outlined the allegations of rape, molestation and unlawful coercion that were brought against Assange following separate sexual encounters in August with two women in Sweden.

Lindfield said one woman accused Assange of pinning her down and refusing to use a condom on the night of Aug. 14 in Stockholm. That woman also accused of Assange of molesting her in a way “designed to violate her sexual integrity” several days later. A second woman accused Assange of having sex with her without a condom while he was a guest at her Stockholm home and she was asleep.

A person who has sex with an unconscious, drunk or sleeping person in Sweden can be convicted of rape and sentenced to two to six years in prison.

Assange’s lawyers have claimed the accusations stem from disputes “over consensual but unprotected sex” and say the women made the claims only after finding out that Assange had slept with both.

Prosecutors in Sweden have not brought any formal charges against Assange. WikiLeaks lawyer Mark Stephens said there are doubts as to whether Sweden has the legal right to extradite him simply for questioning.

Experts say European arrest warrants like the one issued by Sweden can be tough to beat. Even if the warrant were defeated on a technicality, Sweden could simply issue a new one.

The extradition process could take anywhere from a week to two months, according to Assange’s Swedish lawyer Bjorn Hurtig. If Assange loses, he may appeal to the High Court. There can be further appeals, and Sweden also has a right to appeal if the court finds in Assange’s favor.

In the meantime, Stephens said he would reapply for bail, noting that several prominent Britons — including socialite Jemima Khan and filmmaker Ken Loach — have each offered to post 20,000 pounds ($31,500) so Assange could go free.

Australian government officials said they are providing Assange with consular assistance, as they do with any countryman arrested abroad. The consul general in London spoke to Assange to ensure he had legal representation, the government said.

Some people protested outside the London court, bearing signs reading, “Save Wikileaks, Save Free Speech” and “Trumped Up Charges.”

“I came to show my support for Julian,” said 26-year-old electrician Kim Krasniqi. “He is innocent. Europe is bullying him, They don’t want him to publish what he is publishing.”

The latest batch of confidential U.S. cables could strain relations between Washington and Moscow. The documents show that NATO secretly decided in January to defend the Baltic states of Estonia, Latvia and Lithuania against military attack.

Dmitry Rogozin, Russia’s ambassador to NATO, said Tuesday that Moscow will demand that NATO drop the agreement, which he argued is clearly aimed at his country.

“Against whom else could such a defense be intended? Against Sweden, Finland, Greenland, Iceland? Against polar bears, or against the Russian bear?” Rogozin said.