Feeds

Credit card fraud fears cloud Operation Ore

Double jeopardy for fraud victims?

Protecting users from Firesheep and other Sidejacking attacks with SSL

Many of the child abuse download suspects snared in Operation Ore may have been innocent victims of credit card fraud, according to a BBC investigation.

Operation Ore, the UK's biggest ever child pornography investigation, involved the prosecution of 2,000 suspects among 7,000 Brits whose credit cards were used to pay for access to images of child abuse via a US-based portal run by Landslide Inc. Nearly half a million people worldwide paid to access the depraved material.

Lawyers and computer security experts quizzed by BBC Radio 4's The Investigation suspect that many of those arrested may have been victims of credit card fraud. The police admit the possibility that third parties used fraudulently obtained credit card details to pay for child porn, but reject the suggestion that any of those prosecuted fall into this category.

US authorities raiding Landslide found a list of credit card purchases on its servers. They passed over the details of UK suspects to British police, prompting the launch of Operation Ore in May 2002. Around 2,300 people on the list were convicted of child porn offences, while another 2,000 faced the stress of investigations that sometimes dragged on for months before charges were subsequently dropped, the BBC reports.

Experts quizzed by Channel 4 argue that the police failed to carry out proper checks designed to determine whether the suspects might have been victims of fraud.

"The police just didn't look for and didn't understand the evidence of wholesale card fraud," Ross Anderson, professor of security engineering at Cambridge University told the BBC. "And as a result, hundreds of people, possibly in the low thousands of people, have been put through a terrible mill with threats of prosecution for child pornography."

Simon Bunce, who was arrested after his name was found on the Landslide database, faced a six month investigation before charges were dropped. Nothing was found on his computers. "I investigated diligently myself and I established I was a victim of credit card fraud and identity theft," he said.

Police defend the record of Operation Ore. Jim Gamble, former head of the National Crime Squad which spearheaded the investigation, said 90 per cent of arrested suspects in the investigation pleaded guilty when confronted by the evidence against them. "That's people who - the allegation has been levelled against them, the evidence has been collected and they, at court or through accepting an adult caution, which 600-plus of them did, have said I am guilty of this offence," he told the BBC. "That's not about credit card fraud."

BBC Radio 4's The Investigation airs at 8pm on Thursday, 10 May. ®

The next step in data security

More from The Register

next story
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
Infosec geniuses hack a Canon PRINTER and install DOOM
Internet of Stuff securo-cockups strike yet again
THREE QUARTERS of Android mobes open to web page spy bug
Metasploit module gobbles KitKat SOP slop
'Speargun' program is fantasy, says cable operator
We just might notice if you cut our cables
Apple Pay is a tidy payday for Apple with 0.15% cut, sources say
Cupertino slurps 15 cents from every $100 purchase
YouTube, Amazon and Yahoo! caught in malvertising mess
Cisco says 'Kyle and Stan' attack is spreading through compromised ad networks
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
Greater dev access to iOS 8 will put us AT RISK from HACKERS
Knocking holes in Apple's walled garden could backfire, says securo-chap
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.