STE WILLIAMS

Hacker Attack WikiLeaks foes

LONDON — In a campaign that had some declaring the start of a “cyberwar,” hundreds of Internet activists mounted retaliatory attacks on Wednesday on the Web sites of multinational companies and other organizations they deemed hostile to the WikiLeaks antisecrecy organization and its jailed founder, Julian Assange.

Within 12 hours of a British judge’s decision to deny Mr. Assange bail in a Swedish extradition case, attacks on the Web sites of WikiLeaks’s “enemies,” as defined by the organization’s impassioned supporters around the world, caused several corporate Web sites to become inaccessible or slow down markedly.

Targets of the attacks, in which activists overwhelmed the sites with traffic, included the Web site of MasterCard, which had stopped processing donations for WikiLeaks; Amazon.com, which revoked the use of its computer servers; and PayPal, which stopped accepting donations for Mr. Assange’s group. Visa.com was also affected by the attacks, as were the Web sites of the Swedish prosecutor’s office and the lawyer representing the two women whose allegations of sexual misconduct are the basis of Sweden’s extradition bid.

On Thursday, Gregg Housh, an activist with the loosely affiliated group of so-called hacktivists, said the group was redoubling its efforts to bring down PayPal, which is better protected than some other sites. The assertion was backed up by an independent security analyst who closely monitors the Internet and saw evidence of the onslaught.

No other major Web sites appeared to be suffering disruptions in service early Thursday, however, suggesting that the economic impact of the attacks was limited.

The Internet assaults underlined the growing reach of self-described “cyberanarchists,” antigovernment and anticorporate activists who have made an icon of Mr. Assange, a 39-year-old Australian.

The speed and range of the attacks Wednesday appeared to show the resilience of the backing among computer activists for Mr. Assange, who has appeared increasingly isolated in recent months amid the furor stoked by WikiLeaks’s posting of hundreds of thousands of secret Pentagon documents on the wars in Afghanistan and Iraq.

Mr. Assange has come under renewed attack in the past two weeks for posting the first tranche of a trove of 250,000 secret State Department cables that have exposed American diplomats’ frank assessments of relations with many countries, forcing Secretary of State Hillary Rodham Clinton to express regret to world leaders and raising fears that they and other sources would become more reticent.

The New York Times and four other news organizations last week began publishing articles based on the archive of cables made available to them.

In recent months, some of Mr. Assange’s closest associates in WikiLeaks abandoned him, calling him autocratic and capricious and accusing him of reneging on WikiLeaks’s original pledge of impartiality to launch a concerted attack on the United States. He has been simultaneously fighting a remote battle with the Swedish prosecutors, who have sought his extradition for questioning on accusations of “rape, sexual molestation and forceful coercion” made by the Swedish women. Mr. Assange has denied any wrongdoing in the cases.

American officials have repeatedly said that they are reviewing possible criminal charges against Mr. Assange, a step that could lead to a bid to extradite him to the United States and confront him with having to fight for his freedom on two fronts.

The cyberattacks in Mr. Assange’s defense appear to have been coordinated by Anonymous, a loosely affiliated group of activist computer hackers who have singled out other groups before, including the Church of Scientology. Last weekend, members of Anonymous vowed in two online manifestos to take revenge on any organization that lined up against WikiLeaks.

Anonymous claimed responsibility for the MasterCard attack in Web messages and, according to Mr. Housh, the activist associated with the group, conducted waves of attacks on other companies during the day. The group said the actions were part of an effort called Operation Payback, which began as a way of punishing companies that tried to stop Internet file-sharing and movie downloads.

Mr. Housh, who disavows a personal role in any illegal online activity, said that 1,500 supporters had been in online forums and chat rooms organizing the mass “denial of service” attacks. His account was confirmed by Jose Nazario, a senior security researcher at Arbor Networks, a Chelmsford, Mass., firm that tracks malicious activity on computer networks.

Most of the corporations whose sites were targeted did not explain why they severed ties with WikiLeaks. But PayPal issued statements saying its decision was based on “a violation” of its policy on promoting illegal activities.

Paul Mutton, a security analyst at netcraft, a British Internet monitoring firm, confirmed Mr. Housh’s account of the renewed attack on PayPal Thursday and said it had caused sporadic outages through the day. A spokesman for PayPal was not immediately reachable to confirm or deny the accounts.

The sense of an Internet war was reinforced Wednesday when netcraft reported that the Web site being used by the hackers to distribute denial-of-service software had been suspended by a Dutch hosting firm, Leaseweb.

A sense of the belligerent mood among activists was given when one contributor to a forum the group uses, WhyWeProtest.net, wrote of the attacks: “The war is on. And everyone ought to spend some time thinking about it, discussing it with others, preparing yourselves so you know how to act if something compels you to make a decision. Be very careful not to err on the side of inaction.”

Mr. Housh acknowledged that there had been online talk among the hackers of a possible Internet campaign against the two women who have been Mr. Assange’s accusers in the Swedish case, but he said that “a lot of people don’t want to be involved.”

A Web search showed new blog posts in recent days in which the two women, identified by the Swedish prosecutors only as Ms. A. and Ms. W., were named, but it was not clear whether there was any link to Anonymous. The women have said that consensual sexual encounters with Mr. Assange became nonconsensual when he stopped using condoms.

The cyberattacks on corporations Wednesday were seen by many supporters as a counterstrike against the United States. Mr. Assange’s online supporters have widely condemned the Obama administration as the unseen hand coordinating efforts to choke off WikiLeaks by denying it financing and suppressing its network of computer servers.

Mr. Housh described Mr. Assange in an interview as “a political prisoner,” a common view among WikiLeaks supporters who have joined Mr. Assange in condemning the sexual abuse accusations as part of an American-inspired “smear campaign.”

Another activist used the analogy of the civil rights struggle for the cyberattacks.

“Are they disrupting business?” a contributor using the name Moryath wrote in a comment on the slashdot.org technology Web site. “Perhaps, but no worse than the lunch counter sit-ins did.”

John Markoff and Ashlee Vance contributed reporting from San Francisco, and Alan Cowell from Paris.

Mastercard downed by Anon-Assange-fans

Mastercard is feeling the wrath of the internet this afternoon – its website and at least part of its payment systems have apparently been brought down by a denial of service attack.

The credit card company is being typically cryptic – its most recent statement said only that it is “is experiencing heavy traffic on its external corporate website”, which is a nicely understated way to describe an overwhelming DDoS assault.

The statement added: “We are working to restore normal speed of service. There is no impact whatsoever on our cardholders’ ability to use their cards for secure transactions.”

However the Reg has been contacted by merchants down under who are currently unable to access the payment portal on Mastercard’s private network – a far more serious breach of security than just downing a website.

This blog also suggests that Mastercard’s 3D Secure system is not working either.

The hack attack is being claimed by Operation Payback, as revenge for Mastercard’s decision to shut down payments to Wikileaks in the wake of its publishing US diplomatic cables.

Operation Payback has itself come under DDoS attack from ‘patriot’ hackers. Presumably pro-Assange hackers have taken out Senator Lieberman’s personal site.

PayPal was targeted for similar reasons, but was functioning at the time of writing.

Mastercard’s PRs were unable to confirm any attack on payments systems but have promised us a more up-to-date statement. We’ll update this story should we receive one.

Pro-Wikileaks hacktivistas in DDoS dustup with patriot contras

Online hacktivist collective Anonymous, operating under the banners Operation:Payback and “Operation Avenge Assange” have launched a series of DDoS attacks against organisations and people seen as being opposed to Wikileaks and its spokesman Julian Assange.

Meanwhile, Operation:Payback itself has been subjected to counter-DDoS attacks thought to originate with US “patriotic” contra-hacktivistas.

Sites attacked by the Anonymous group have included PostFinance.ch, belonging to the Swiss bank which recently froze an account controlled by Assange, and also ThePayPalblog.com – the main blog operated by PayPal, targeted for refusing to process Wikileaks contributions. DNS outfit EveryDNS has also come into the Operation:Payback gunsights for cutting off Wikileaks’ DNS service, saying that online attacks targeted at the leak site were crippling its other customers.

Over the last couple of days, other sites have been DDoS’d for various reasons by the Anonymous group, including the Swedish lawyers representing the women Assange is alleged to have committed sexual offences against. Charges made by Swedish prosecutors have since resulted in the issue of a European arrest warrant and Assange was yesterday cuffed in London: British judges have elected to refuse bail and the colourful Wikileaks impresario is now in jail pending an extradition hearing.

This process has angered the members of Operation:Payback sufficiently that they have also elected to mount strikes against the website of the Swedish prosecutors’ office and briefly, according to anonymous* claims received by the Reg, against Interpol. (Interpol did issue a “Red Notice” calling for Assange’s arrest at the behest of Swedish authorities, but in fact this has no relevance for British police dealing with a request from another EU nation: in such cases a European warrant is required for the UK cops to act.)

Yesterday, the Anonymous hacktivists decided to attack the site of US Senator Joe Lieberman as well, presumably as a result of remarks he has made describing Wikileaks operations as crimes violating the US Espionage Act – and hinting that Wikileaks’ mainstream-media partners, collaborating on trawling and redacting files prior to public release, have violated the law also.

Some Operation:Payback members also elected to attack the site of former Alaska governor and vice-presidential candidate Sarah Palin for suggesting that Assange should be hunted down like a terrorist.

The Anonymous attacks have been run on through a chatroom, with users attaching their computers to a voluntary botnet for use in the DDoS strikes. Panda Security reported that as the Lieberman attacks began there were almost 1,000 users in the chatroom and nearly 600 machines in the botnet.

Naturally enough Operation:Payback itself has been subject to counter-DDoS efforts of varying strength almost since it began, but following the decision to attack Lieberman’s official US government site the Anonymous operation began to be hit much harder and suffered dozens of outages itself, one lasting almost two hours. Panda Security analysts assessed that the intensified counter-DDoS attacks were coming from self-described American “patriot” hackers – playing contra to the Anonymous hacktivistas, perhaps.

Meanwhile US Army private soldier Bradley Manning, believed to have supplied not only the vast stash of diplomatic cables now being drip-fed by Wikileaks but most of its previous significant material as well (the Baghdad gunship videos, Iraq and Afghanistan “war logs” etc) remains in military prison charged with an array of security violations. His name is seldom mentioned any more in the ongoing saga of Wikileaks, Assange and the online scufflers aligned with and against them.

Operation:Payback uses a banner quote from John Perry Barlow, a founder of the Electronic Frontier Foundation:

“The first serious infowar is now engaged. The field of battle is WikiLeaks. You are the troops.”

Some context for the online teacup “war” might be provided by the tiny size of the Anonymous volunteer botnet compared to today’s heavyweight criminal bot networks. There wasn’t even an attempt to actually attack PayPal, just its corporate blog. ®

Bootnote

*These emails were purportedly from Anonymous, but naturally we can’t vouch for their authenticity. As the faceless informant put it (this is verbatim):

Anyone using a name and claiming to represent Anonymous is a charloten, a fraud, a 13 year old basement dweller surrounded by crusty socks and empty Dew bottles, seeking glory among his friends on Tumblr.

PayPal banned WikiLeaks after US gov intervention

Updated A PayPal executive said his company’s decision to suspend payments to Wikileaks came after the US State Department said the whistle-blower site was engaged in illegal activity. The comment came shortly before PayPal agreed to release the remaining funds in the WikiLeaks fund-raising account.

Press accounts from The Guardian and TechCrunch differ, but both claim that PayPal’s move was influenced by statements from the State Department.

“State Dept told us these were illegal activities,” PayPal VP of platform Osama Bedier told the LeWeb conference in Paris, according to this report from The Guardian. “It was straightforward. We … comply with regulations around the world, making sure that we protect our brand.”

TechCrunch reported much the same thing but later updated its post to say: “After talking to Bedier backstage, he clarified that the State Department did not directly talk to PayPal.” He went on to say that the online payment service was influenced by a November 27 letter State Department officials sent Wikileaks founder Julian Assange and his attorney.

“As you know, if any of the materials you intend to publish were provided by any government officials, or any intermediary without proper authorization, they were provided in violation of US law and without regard for the the grave consequences of this action,” the letter, signed by State Department legal adviser Hongju Koh, stated. “As long as WikiLeaks holds such material, the violation of the law is ongoing.”

The letter didn’t cite any specific US statutes WikiLeaks was violating.

WikiLeaks went on to release a trove of State Department memos that aired confidential diplomatic communications.

PayPal representatives didn’t respond to emails seeking clarification about the influence of the State Department.

But late on Wednesday, PayPal General Counsel John Muller said: “While the account will remain restricted, PayPal will release all remaining funds in the account to the foundation that was raising funds for WikiLeaks. According to The Washington Post, there was about $80,000 in the account.

Muller went on to defend the permanent closure of the account by saying the online payment site is “required to comply with laws around the world.”

“Ultimately, our difficult decision was based on a belief that the WikiLeaks website was encouraging sources to release classified material, which is likely a violation of law by the source,” he continued.

Muller’s argument made no mention of organizations such as the International Tibet Network, which continues to solicit donations through PayPal even though some of their activities almost surely violate Chinese laws.

Over the past few days, other financial services, including Visa, MasterCard, and the Swiss bank Post Finance, have also suspended services to Wikileaks and Assange. The move has prompted criticism on Twitter and elsewhere by users who point out that Visa and MasterCard still permit payments to Ku Klux Klan groups but not to a group that so far has been charged with no crime.

Distributed denial of service attacks by people sympathetic to Wikileaks soon took out MasterCard and were also reported against EveryDNS.net, which suspended one of WikiLeaks domain names. US Senator Joe Lieberman and Sarah Palin – both outspoken WikiLeaks critics – and Swedish prosecutors, who are investigating Assange for alleged sexual offenses, have also been targeted, according to reports. A PayPal blog was also disrupted by attacks.

The Register has asked Visa and MasterCard to comment. This post will be updated if either responds. ®

Assange Arrested

LONDON – WikiLeaks founder Julian Assange was arrested and jailed without bail Tuesday in a sex-crimes investigation, but his organization scarcely missed a beat, releasing a new batch of the secret cables that U.S. officials say are damaging America’s security and relations worldwide.

A month after dropping out of public view, the 39-year-old Australian surrendered to Scotland Yard to answer a warrant issued for his arrest by Sweden. He is wanted for questioning after two women accused him of having sex with them without a condom and without their consent.

Assange said he would fight extradition to Sweden, setting the stage for what could be a pitched legal battle. And as if to prove that it can’t be intimidated, WikiLeaks promptly released a dozen new cables, including details of a NATO defense plan for Estonia, Latvia and Lithuania that made Russia bristle.

The Pentagon welcomed Assange’s arrest.

“That sounds like good news to me,” U.S. Defense Secretary Robert Gates said on a visit to Afghanistan.

WikiLeaks spokesman Kristinn Hrafnsson insisted Assange’s arrest and the decision Tuesday by both Visa and MasterCard to stop processing donations to the group “will not change our operation.” Hrafnsson said the organization has no plans yet to make good on its threat to release en masse some of its most sensitive U.S. documents if it comes under attack.

At a court hearing in London, Assange showed no reaction as Judge Howard Riddle denied him bail while he awaits an extradition hearing Dec. 14. The judge said Assange might flee if released. When the judge asked him whether he would agree to be extradited, Assange said: “I do not consent.”

It was not publicly known which jail Assange was sent to, since British police never reveal that for privacy and security reasons. Some prisoners occasionally get Internet access, though only under close supervision.

The U.S. government is investigating whether Assange can be prosecuted for espionage or other offenses. On Tuesday, Pentagon and State Department officials said some foreign officials have suddenly grown reluctant to trust the U.S. because of the secrets spilled by WikiLeaks.

“We have already seen some indications of meetings that used to involve several diplomats and now involve fewer diplomats,” said State Department spokesman P.J. Crowley. “We’re conscious of at least one meeting where it was requested that notebooks be left outside the room.”

Pentagon spokesman Col. Dave Lapan said the military had seen foreign contacts “pulling back.”

“Believing that the U.S. is not good at keeping secrets and having secrets out there certainly changed things,” Lapan said.

During the hour-long court hearing in London, attorney Gemma Lindfield, acting on behalf of the Swedish authorities, outlined the allegations of rape, molestation and unlawful coercion that were brought against Assange following separate sexual encounters in August with two women in Sweden.

Lindfield said one woman accused Assange of pinning her down and refusing to use a condom on the night of Aug. 14 in Stockholm. That woman also accused of Assange of molesting her in a way “designed to violate her sexual integrity” several days later. A second woman accused Assange of having sex with her without a condom while he was a guest at her Stockholm home and she was asleep.

A person who has sex with an unconscious, drunk or sleeping person in Sweden can be convicted of rape and sentenced to two to six years in prison.

Assange’s lawyers have claimed the accusations stem from disputes “over consensual but unprotected sex” and say the women made the claims only after finding out that Assange had slept with both.

Prosecutors in Sweden have not brought any formal charges against Assange. WikiLeaks lawyer Mark Stephens said there are doubts as to whether Sweden has the legal right to extradite him simply for questioning.

Experts say European arrest warrants like the one issued by Sweden can be tough to beat. Even if the warrant were defeated on a technicality, Sweden could simply issue a new one.

The extradition process could take anywhere from a week to two months, according to Assange’s Swedish lawyer Bjorn Hurtig. If Assange loses, he may appeal to the High Court. There can be further appeals, and Sweden also has a right to appeal if the court finds in Assange’s favor.

In the meantime, Stephens said he would reapply for bail, noting that several prominent Britons — including socialite Jemima Khan and filmmaker Ken Loach — have each offered to post 20,000 pounds ($31,500) so Assange could go free.

Australian government officials said they are providing Assange with consular assistance, as they do with any countryman arrested abroad. The consul general in London spoke to Assange to ensure he had legal representation, the government said.

Some people protested outside the London court, bearing signs reading, “Save Wikileaks, Save Free Speech” and “Trumped Up Charges.”

“I came to show my support for Julian,” said 26-year-old electrician Kim Krasniqi. “He is innocent. Europe is bullying him, They don’t want him to publish what he is publishing.”

The latest batch of confidential U.S. cables could strain relations between Washington and Moscow. The documents show that NATO secretly decided in January to defend the Baltic states of Estonia, Latvia and Lithuania against military attack.

Dmitry Rogozin, Russia’s ambassador to NATO, said Tuesday that Moscow will demand that NATO drop the agreement, which he argued is clearly aimed at his country.

“Against whom else could such a defense be intended? Against Sweden, Finland, Greenland, Iceland? Against polar bears, or against the Russian bear?” Rogozin said.

Stuxnet expert nuke-boffin killing: Iran claims arrests

Iranian authorities claim to have arrested suspects over the murder of a nuclear scientist in the country last Monday.

Motorcylists placed bombs on the windows of cars as the targets of the attack were driving to work, in two identical but separate attacks last Monday. Each device was detonated seconds later leaving little chance of escape.

One blast killed Majid Shahriari, a professor at the nuclear engineering faculty at the Tehran University, and severely wounded his wife. The second bomb injured nuclear physicist Fereidoun Abbasi, who was fortunate to escape with his life.

Shahriari, a quantum physicist by trade, reportedly headed the team Iran has established to eradicate the Stuxnet worm from industrial facilities involved in its controversial nuclear program.

Iranian Intelligence Minister Heidar Moslehi claimed that the country had made an unspecified number of arrests over the assassinations, which he blamed on Western intelligence agencies.

Details on the supposed arrests were notably vague; it may be that the announcement, and follow-up comment by Iranian President Mahmoud Ahmadinejad along the same lines, were intended primarily for domestic consumption.

Stuxnet is a sophisticated worm that selectively targets industrial control systems from Siemens, allowing compromised systems to be reprogrammed and therefore sabotaged. The Iranian president confirmed last week that the worm sabotaged uranium-enrichment centrifuges at the centre of the country’s controversial nuclear program. ®

WikiLeaks dubs Amazon ‘The Cowardly Liar’

WikiLeaks has dubbed Amazon both cowardly and a liar, after the American net giant booted the whistle-blowing website from its hosting service and then said its decision had nothing to do with complaints from the US government.

“Amazon’s press release does not accord with the facts on public record. It is one thing to be cowardly. Another to lie about it,” WikiLeaks said in post to its Twitter account on Friday.

As of Monday, WikiLeaks was hosting its trove of classified US state department cables on the US-based portion of Amazon Elastic Compute Cloud service, and on Wednesday, US Senator Joe Lieberman, the chair of the Senate’s Homeland Security and Governmental Affairs Committee, announced that after an inquiry from his staff, Amazon said it had removed WikiLeaks from the service.

“The company’s decision to cut off WikiLeaks now is the right decision and should set the standard for other companies WikiLeaks is using to distribute its illegally seized material. I call on any other company or organization that is hosting WikiLeaks to immediately terminate its relationship with them,” Lieberman said in a statement

“WikiLeaks’ illegal, outrageous, and reckless acts have compromised our national security and put lives at risk around the world. No responsible company — whether American or foreign — should assist WikiLeaks in its efforts to disseminate these stolen materials. I will be asking Amazon about the extent of its relationship with WikiLeaks and what it and other web service providers will do in the future to ensure that their services are not used to distribute stolen, classified information.”

Netcraft records confirmed that WikiLeaks was no longer hosted on AWS, and WikiLeaks soon tweeted that its mirrors were removed against its wishes. “WikiLeaks servers at Amazon ousted,” it said. “Free speech the land of the free — fine our $ are now spent to employ people in Europe.” According to internet records, the site fell back on servers in Sweden.

Amazon did not respond to repeated requests for comment from The Register. But more than a day later, the company published a blog post claiming it had not removed WikiLeaks in response to government inquiries. “There have been reports that a government inquiry prompted us not to serve WikiLeaks any longer,” the post said. “That is inaccurate.”

The company also said it had not removed the mirrors due to DDoS attacks. It said that WikiLeaks was booted because the site wasn’t following its terms of service. “AWS does not pre-screen its customers, but it does have terms of service that must be followed. WikiLeaks was not following them. [For instance], it’s clear that WikiLeaks doesn’t own or otherwise control all the rights to this classified content,” the company said.

“Further, it is not credible that the extraordinary volume of 250,000 classified documents that WikiLeaks is publishing could have been carefully redacted in such a way as to ensure that they weren’t putting innocent people in jeopardy. Human rights organizations have in fact written to WikiLeaks asking them to exercise caution and not release the names or identities of human rights defenders who might be persecuted by their governments.”

The company added that it has no problems hosting “controversial” data, but that the WikiLeaks situation is a separate case. “When companies or people go about securing and storing large quantities of data that isn’t rightfully theirs, and publishing this data without ensuring it won’t injure others, it’s a violation of our terms of service, and folks need to go operate elsewhere.”

But the timing of the decision is telling.

Assange: ‘It was all part of my master plan…’

On October 25, The Register reported that WikiLeaks was mirroring data on Amazon servers in both the US and Ireland, including the classifed “Iraq War logs.” But aside from a brief mention on The Daily Telegraph website, the news received little mention in the mainstream media. We contacted Amazon at the time and alerted them to the mirrors, but the company did not respond.

Then, earlier this week, we reported that WikiLeaks had hoisted its “cablegate” documents onto Amazon, and this time, the news was picked up by the Wall Street Journal and several other major news outlets. The Joe Liebermans of the world, you see, read The Wall Street Journal.

What’s more, a day after Amazon booted WikiLeaks, the site was also ousted by its US-based DNS provider, EveryDNS. Last month, we spoke to EveryDNS about WikiLeaks’ use of its service, and though it declined to discuss the accounts of specific customers, it said it would only remove customers if they violated its terms of service. We also spoke to Dynadot, WikiLeaks’ US-based domain name registrar. President Todd Han echoed what EveryDNS told us, but he did add that it typically only removes sites for violations if it receives a complaint from an injured party.

“Usually, most of the time, we resonded to complaints, but sometimes we will take action on our own if it violates our terms of service,” Han told us. “If they violate the law, they violate terms of service. But with these kinds of situations with domains, there are two sides of the story. There’s a lot of grey areas.”

Indeed.

Like Amazon, EveryDNS did not boot WikiLeaks until this week — more than a month after we first spoke to the company about the site. Unlike Amazon, it said that it removed WikiLeaks due to DDos attacks on the site. “The services were terminated for violation of the provision which states that ‘Member shall not interfere with another Member’s use and enjoyment of the Service or another entity’s use and enjoyment of similar services’,” EveryDNS said in a statement.

“The interference at issue arises from the fact that wikileaks.org has become the target of multiple distributed denial of service (DDOS) attacks. These attacks have, and future attacks would, threaten the stability of the EveryDNS.net infrastructure, which enables access to almost 500,000 other websites.”

Naturally, WikiLeaks has simply moved its service elsewhere. Booted by its DNS provider, the site has resurfaced on a Swiss net domain. “WikiLeaks moves to Switzerland http://wikileaks.ch/,” read another Tweet from WikiLeaks.

In other words, the whole saga has played out just as expected. “Even if Amazon is insulated from liability, I suspect Amazon will choose to remove the content ‘voluntarily’ (motivated by a little persuasion from the government), presumably citing a breach of its terms of service as a pretext,” Santa Clara law professor and tech law blogger Eric Goldman told The Reg a month ago.

“A more ‘ideological’ web host would probably fight more vigorously for its users’ publishing rights than Amazon will.” Unless a federal crime has been committed, Amazon is not legally required to remove the data, and it’s unclear whether WikiLeaks is committing a criminal act.

And echoing other suspicions from late October, WikiLeaks founder has now claimed that the site purposefully mirrored its data on Amazon’s servers to expose the company’s “free speech deficit.”

“Since 2007 we have been deliberately placing some of our servers in jurisdictions that we suspected suffered a free speech deficit in order to separate rhetoric from reality,” Assange said on Friday during a live chat on The Guardian‘s website. “Amazon was one of these cases.” ®

White House forbids feds from reading WikiLeaked cables

Everyone else on earth can read them. But they’re still classified

The epic collection of classified US documents exposed by WikiLeaks over the past several weeks offer little more than good gossip. But watching the response to Julian Assange and his whistle-blowing website is wonderfully entertaining.

The latest act in the worldwide WikiLeaks comedy: on Friday, the White House told federal employees and contractors that they’re not allowed to read classified federal documents posted to WikiLeaks unless they have the proper security clearance. This rule applies when they’re using government machines or their own personal computers.

As reported by CNN, the White House Office of Management and Budget sent a memo to the general counsels of various government agencies saying that the publishing of classified documents to WikiLeaks does “not alter the documents’ classified status or automatically result in declassification of the documents.”

“To the contrary, classified information, whether or not already posted on public websites or disclosed to the media remains classified, and must be treated as such by federal employees and contractors, until it is declassified by an appropriate U.S. Government authority,” the memo read.

Asked if employees and contractors could lose their jobs if they visit WikiLeaks, a White House spokeswoman told CNN: “Any breaches of protocols governing access to classified material are subject to applicable sanctions under long-standing and existing law.”

But the memo does have its limits. It doen’t bar employees and contractors from reading news articles about the WikiLeaked US State Department cables, and it doesn’t instruct agencies to block access to WikiLeaks.

Not that this has stopped the Department of Defense and the Library of Congress. Both have blocked access to the site on their own.

Meanwhile, PayPal has shut the account that WikiLeaks used to take donations, saying that the site violated its terms of service. Last week, Amazon shut down WikiLeaks server mirrors on its AWS hosting service, and EveryDNS cut off WikiLeaks DNS service. Amazon claims its decision was not in response to a government inquiry, while EveryDNS said it booted WikiLeaks because of heavy DDoS attacks directed at the site. ®

Popular sites caught sniffing user browser history

Boffins from Southern California have caught YouPorn.com and 45 other sites pilfering visitors’ surfing habits in what is believed to be the first study to measure in-the-wild exploits of a decade-old browser vulnerability.

YouPorn, which fancies itself the YouTube of smut, uses JavaScript to detect whether visitors have recently browsed to PornHub.com, tube8.com and 21 other sites, according to the study. It tracked the 50,000 most popular websites and found a total of 46 other offenders, including news sites charter.net and newsmax.com, finance site morningstar.com and sports site espnf1.com.

“We found that several popular sites – including an Alexa global top-100 site – make use of history sniffing to exfiltrate information about users’ browsing history, and, in some cases, do so in an obfuscated manner to avoid easy detection,” the report states. “While researchers have known about the possibility of such attacks, hitherto it was not known how prevalent they are in real, popular websites.”

To cover its tracks, YouPorn encodes its JavaScript to hide the sites it searches for and decodes it only when used. Other websites dynamically generate the snoop code to prevent detection by simple inspection. Still others rely on third-party history-stealing libraries from services that include interclick.com and meaningtool.com.

The scientists detected the history stealing by concocting their own version of Google’s Chrome browser with a JavaScript information flow engine that “uses a dynamic source-to-source rewriting approach.”

The 46 sites exploit a widely known vulnerability that currently exists in all production version browsers except of Apple’s Safari, which earlier this year became the first major browser to insulate users against the threat. Google Chrome, which is based on the same Webkit engine, soon followed. Beta versions of Mozilla Firefox and Microsoft Internet Explorer also fix the problem, but production versions of those browsers are still wide open.

The exploit works by using JavaScript to read cascading style sheet technologies included in virtually every browser that causes visited links to appear in purple rather than blue. Developers have known of the weakness for a decade or more but until recently said it couldn’t be easily repaired without removing core functionality.

The study also detected code on sites maintained by Microsoft, YouTube, Yahoo and About.com that perform what the scientists called “behavioral sniffing.” They employ JavaScript that covertly tracks mouse movements on a page to detect what a user does after visiting it.

A PDF of the paper, which was written by Dongseok Jang, Ranjit Jhala, Sorin Lerner, and Hovav Shacham, is here. ®

Julian Assange “Live” Q & A

Fwoggie
I’ll start the ball rolling with a question. You’re an Australian passport holder – would you want return to your own country or is this now out of the question due to potentially being arrested on arrival for releasing cables relating to Australian diplomats and polices?

Julian Assange small

Julian Assange:
I am an Australian citizen and I miss my country a great deal. However, during the last weeks the Australian prime minister, Julia Gillard, and the attorney general, Robert McClelland, have made it clear that not only is my return is impossible but that they are actively working to assist the United States government in its attacks on myself and our people. This brings into question what does it mean to be an Australian citizen – does that mean anything at all? Or are we all to be treated like David Hicks at the first possible opportunity merely so that Australian politicians and diplomats can be invited to the best US embassy cocktail parties.

girish89
How do you think you have changed world affairs?
And if you call all the attention you’ve been given-credit … shouldn’t the mole or source receive a word of praise from you?

Julian Assange small

Julian Assange:
For the past four years one of our goals has been to lionise the source who take the real risks in nearly every journalistic disclosure and without whose efforts, journalists would be nothing. If indeed it is the case, as alleged by the Pentagon, that the young soldier – Bradley Manning – is behind some of our recent disclosures, then he is without doubt an unparalleled hero.

Daithi
Have you released, or will you release, cables (either in the last few days or with the Afghan and Iraq war logs) with the names of Afghan informants or anything else like so?
Are you willing to censor (sorry for using the term) any names that you feel might land people in danger from reprisals??
By the way, I think history will absolve you. Well done!!!

Julian Assange small

Julian Assange:
WikiLeaks has a four-year publishing history. During that time there has been no credible allegation, even by organisations like the Pentagon that even a single person has come to harm as a result of our activities. This is despite much-attempted manipulation and spin trying to lead people to a counter-factual conclusion. We do not expect any change in this regard.

distrot
The State Dept is mulling over the issue of whether you are a journalist or not. Are you a journalist? As far as delivering information that someone [anyone] does not want seen is concerned, does it matter if you are a ‘journalist’ or not?

Julian Assange small

Julian Assange:
I coauthored my first nonfiction book by the time I was 25. I have been involved in nonfiction documentaries, newspapers, TV and internet since that time. However, it is not necessary to debate whether I am a journalist, or how our people mysteriously are alleged to cease to be journalists when they start writing for our organisaiton. Although I still write, research and investigate my role is primarily that of a publisher and editor-in-chief who organises and directs other journalists.

achanth
Mr Assange,
have there ever been documents forwarded to you which deal with the topic of UFOs or extraterrestrials?

Julian Assange small

Julian Assange:
Many weirdos email us about UFOs or how they discovered that they were the anti-christ whilst talking with their ex-wife at a garden party over a pot-plant. However, as yet they have not satisfied two of our publishing rules.
1) that the documents not be self-authored;
2) that they be original.
However, it is worth noting that in yet-to-be-published parts of the cablegate archive there are indeed references to UFOs.

gnosticheresy
What happened to all the other documents that were on Wikileaks prior to these series of “megaleaks”? Will you put them back online at some stage (“technical difficulties” permitting)?

Julian Assange small

Julian Assange:
Many of these are still available at mirror.wikileaks.info and the rest will be returning as soon as we can find a moment to do address the engineering complexities. Since April of this year our timetable has not been our own, rather it has been one that has centred on the moves of abusive elements of the United States government against us. But rest assured I am deeply unhappy that the three-and-a-half years of my work and others is not easily available or searchable by the general public.

CrisShutlar
Have you expected this level of impact all over the world? Do you fear for your security?

Julian Assange small

Julian Assange:
I always believed that WikiLeaks as a concept would perform a global role and to some degree it was clear that is was doing that as far back as 2007 when it changed the result of the Kenyan general election. I thought it would take two years instead of four to be recognised by others as having this important role, so we are still a little behind schedule and have much more work to do. The threats against our lives are a matter of public record, however, we are taking the appropriate precautions to the degree that we are able when dealing with a super power.

JAnthony
Julian.
I am a former British diplomat. In the course of my former duties I helped to coordinate multilateral action against a brutal regime in the Balkans, impose sanctions on a renegade state threatening ethnic cleansing, and negotiate a debt relief programme for an impoverished nation. None of this would have been possible without the security and secrecy of diplomatic correspondence, and the protection of that correspondence from publication under the laws of the UK and many other liberal and democratic states. An embassy which cannot securely offer advice or pass messages back to London is an embassy which cannot operate. Diplomacy cannot operate without discretion and the
protection of sources. This applies to the UK and the UN as much as the US.
In publishing this massive volume of correspondence, Wikileaks is not highlighting specific cases of wrongdoing but undermining the entire process of diplomacy. If you can publish US cables then you can publish UK telegrams and UN emails.
My question to you is: why should we not hold you personally responsible when next an international crisis goes unresolved because diplomats cannot function.

Julian Assange small

Julian Assange:
If you trim the vast editorial letter to the singular question actually asked, I would be happy to give it my attention.

cargun
Mr Assange,
Can you explain the censorship of identities as XXXXX’s in the revealed cables? Some critical identities are left as is, whereas some are XXXXX’d. Some cables are partially revealed. Who can make such critical decisons, but the US gov’t? As far as we know your request for such help was rejected by the State department. Also is there an order in the release of cable or are they randomly selected?
Thank you.

Julian Assange small

Julian Assange:
The cables we have release correspond to stories released by our main stream media partners and ourselves. They have been redacted by the journalists working on the stories, as these people must know the material well in order to write about it. The redactions are then reviewed by at least one other journalist or editor, and we review samples supplied by the other organisations to make sure the process is working.

rszopa
Annoying as it may be, the DDoS seems to be good publicity (if anything, it adds to your credibility). So is getting kicked out of AWS. Do you agree with this statement? Were you planning for it?
Thank you for doing what you are doing.

Julian Assange small

Julian Assange:
Since 2007 we have been deliberately placing some of our servers in jurisdictions that we suspected suffered a free speech deficit inorder to separate rhetoric from reality. Amazon was one of these cases.

abbeherrera
You started something that nobody can stop. The Beginning of a New World. Remember, that community is behind you and support you (from Slovakia).
Do you have leaks on ACTA?

Julian Assange small

Julian Assange:
Yes, we have leaks on the Anti-Counterfeiting Trade Agreement, a trojan horse trade agreement designed from the very beginning to satisfy big players in the US copyright and patent industries. In fact, it was WikiLeaks that first drew ACTA to the public’s attention – with a leak.

people1st
Tom Flanagan, a [former] senior adviser to Canadian Prime Minister recently stated “I think Assange should be assassinated … I think Obama should put out a contract … I wouldn’t feel unhappy if Assange does disappear.”
How do you feel about this?

Julian Assange small

Julian Assange:
It is correct that Mr. Flanagan and the others seriously making these statements should be charged with incitement to commit murder.

Isopod
Julian, why do you think it was necessary to “give Wikileaks a face”? Don’t you think it would be better if the organization was anonymous?
This whole debate has become very personal and reduced on you – “Julian Assange leaked documents”, “Julian Assange is a terrorist”, “Julian Assange alledgedly raped a woman”, “Julian Assange should be assassinated”, “Live Q&A qith Julian Assange” etc. Nobody talks about Wikileaks as an organization anymore. Many people don’t even realize that there are other people behind Wikileaks, too.
And this, in my opinion, makes Wikileaks vulnerable because this enables your opponents to argue ad hominem. If they convince the public that you’re an evil, woman-raping terrorist, then Wikileaks’ credibility will be gone. Also, with due respect for all that you’ve done, I think it’s unfair to all the other brave, hard working people behind Wikileaks, that you get so much credit.

Julian Assange small

Julian Assange:
This is an interesting question. I originally tried hard for the organisation to have no face, because I wanted egos to play no part in our activities. This followed the tradition of the French anonymous pure mathematians, who wrote under the collective allonym, “The Bourbaki”. However this quickly led to tremendous distracting curiosity about who and random individuals claiming to represent us. In the end, someone must be responsible to the public and only a leadership that is willing to be publicly courageous can genuinely suggest that sources take risks for the greater good. In that process, I have become the lightening rod. I get undue attacks on every aspect of my life, but then I also get undue credit as some kind of balancing force.

tburgi
Western governments lay claim to moral authority in part from having legal guarantees for a free press.
Threats of legal sanction against Wikileaks and yourself seem to weaken this claim.
(What press needs to be protected except that which is unpopular to the State? If being state-sanctioned is the test for being a media organization, and therefore able to claim rights to press freedom, the situation appears to be the same in authoritarian regimes and the west.)
Do you agree that western governments risk losing moral authority by
attacking Wikileaks?
Do you believe western goverments have any moral authority to begin with?
Thanks,
Tim Burgi
Vancouver, Canada

Julian Assange small

Julian Assange:
The west has fiscalised its basic power relationships through a web of contracts, loans, shareholdings, bank holdings and so on. In such an environment it is easy for speech to be “free” because a change in political will rarely leads to any change in these basic instruments. Western speech, as something that rarely has any effect on power, is, like badgers and birds, free. In states like China, there is pervasive censorship, because speech still has power and power is scared of it. We should always look at censorship as an economic signal that reveals the potential power of speech in that jurisdiction. The attacks against us by the US point to a great hope, speech powerful enough to break the fiscal blockade.

rajiv1857
Hi,
Is the game that you are caught up in winnable? Technically, can you keep playing hide and seek with the powers that be when services and service providers are directly or indirectly under government control or vulnerable to pressure – like Amazon?
Also, if you get “taken out” – and that could be technical, not necessarily physical – what are the alternatives for your cache of material?
Is there a ‘second line’ of activists in place that would continue the campaign?
Is your material ‘dispersed’ so that taking out one cache would not necessarily mean the end of the game?

Julian Assange small

Julian Assange:
The Cable Gate archive has been spread, along with significant material from the US and other countries to over 100,000 people in encrypted form. If something happens to us, the key parts will be released automatically. Further, the Cable Gate archives is in the hands of multiple news organisations. History will win. The world will be elevated to a better place. Will we survive? That depends on you.

logo2

That’s it every one, thanks for all your questions and comments. Julian Assange is sorry that he can’t answer every question but he has tried to cover as much territory as possible. Thanks for your patience with our earlier technical difficulties.