Anonymous has attacked a private file-sharing network accused of hosting 100GB of child pornography material and released doxed information on more than 1500 alleged users.
The online collective said it was “disgusted by these ... traumatic images” and crashed the hosting servers as part of “a pledge to fight for the fallen”.
The Hidden Wiki darknet contained a section called Hard Candy which contained links to child exploitation material that was not available to the public internet.
Of the linked websites, Lolita City was said to contain more than 100GB of exploitation material.
It accused Freedom Hosting of providing most of the illegal content and sent the organisation a warning to remove the material.
“We infiltrated the shared hosting server of Freedom Hosting and shut down services to all clients due to their lack of action to remove child pornography from their server,” Anonymous said in a post.
A statement by the accused hosting provider reportedly captured in a screenshot by Anonymous said slow MySQL queries were run by a registered user resulting in denial of service.
It said backups were made daily and kept for a month.
While Anonymous’ efforts to fight child exploitation were commendable, it may hinder law enforcement investigations.
Nigel Phair, former Australian Federal Police officer and co-founder of the Australian High Tech Crime Centre, said the group should not attack exploitation web sites.
“If police were investigating, it could destroy evidence,” Phair said.
“They shouldn’t be acting as vigilantes. If they find this content, they should notify authorities.
“As enticing as it may be, don’t DoS [cause a denial of service].”
Phair said police collect IP addresses of users who access exploitation content. If the attacked darknet was being monitored, the logs of anonymous vigilantes could be mixed with those of suspects.
This would be exacerbated if denial of service attacks were launched using IP addresses linked in botnets.
Attacks also increased the risk of suspects fleeing or increasing security and obfuscation measures.
Anonymous members should contact “any competent law enforcement” agency to report online exploitation content.
“Like any other crime-related information, this type of data would be well received,” Phair said.
In a post, Anonymous called on law enforcement to investigate doxed users.
He said the government should establish an anonymous online crime reporting tool similar to Crime Stoppers that would process tips in a clearing house.
Copyright © SC Magazine, Australia
Issue: 335 | January/February 2015
Access CRN's extensive online resources including; email bulletins, community discussions and unique online news.
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can log on to the CRN website or start posting comments on articles.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain '@crn.com.au' to your white-listed senders.