Feeds

Credit card fraud fears cloud Operation Ore

Double jeopardy for fraud victims?

3 Big data security analytics techniques

Many of the child abuse download suspects snared in Operation Ore may have been innocent victims of credit card fraud, according to a BBC investigation.

Operation Ore, the UK's biggest ever child pornography investigation, involved the prosecution of 2,000 suspects among 7,000 Brits whose credit cards were used to pay for access to images of child abuse via a US-based portal run by Landslide Inc. Nearly half a million people worldwide paid to access the depraved material.

Lawyers and computer security experts quizzed by BBC Radio 4's The Investigation suspect that many of those arrested may have been victims of credit card fraud. The police admit the possibility that third parties used fraudulently obtained credit card details to pay for child porn, but reject the suggestion that any of those prosecuted fall into this category.

US authorities raiding Landslide found a list of credit card purchases on its servers. They passed over the details of UK suspects to British police, prompting the launch of Operation Ore in May 2002. Around 2,300 people on the list were convicted of child porn offences, while another 2,000 faced the stress of investigations that sometimes dragged on for months before charges were subsequently dropped, the BBC reports.

Experts quizzed by Channel 4 argue that the police failed to carry out proper checks designed to determine whether the suspects might have been victims of fraud.

"The police just didn't look for and didn't understand the evidence of wholesale card fraud," Ross Anderson, professor of security engineering at Cambridge University told the BBC. "And as a result, hundreds of people, possibly in the low thousands of people, have been put through a terrible mill with threats of prosecution for child pornography."

Simon Bunce, who was arrested after his name was found on the Landslide database, faced a six month investigation before charges were dropped. Nothing was found on his computers. "I investigated diligently myself and I established I was a victim of credit card fraud and identity theft," he said.

Police defend the record of Operation Ore. Jim Gamble, former head of the National Crime Squad which spearheaded the investigation, said 90 per cent of arrested suspects in the investigation pleaded guilty when confronted by the evidence against them. "That's people who - the allegation has been levelled against them, the evidence has been collected and they, at court or through accepting an adult caution, which 600-plus of them did, have said I am guilty of this offence," he told the BBC. "That's not about credit card fraud."

BBC Radio 4's The Investigation airs at 8pm on Thursday, 10 May. ®

3 Big data security analytics techniques

More from The Register

next story
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Samsung Galaxy S5 fingerprint scanner hacked in just 4 DAYS
Sammy's newbie cooked slower than iPhone, also costs more to build
Putin tells Snowden: Russia conducts no US-style mass surveillance
Gov't is too broke for that, Russian prez says
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
Mounties always get their man: Heartbleed 'hacker', 19, CUFFED
Canadian teen accused of raiding tax computers using OpenSSL bug
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Call of Duty 'fragged using OpenSSL's Heartbleed exploit'
So it begins ... or maybe not, says one analyst
Heartbleed exploit, inoculation, both released
File under 'this is going to hurt you more than it hurts me'
prev story

Whitepapers

Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.