Feeds

Wikipedia to disclose user's IP address in blackmail case

Complies with court order to unmask suspect Wikifiddler

Designing a Defense for Mobile Applications

The High Court has ordered the publishers of the Wikipedia user-generated encyclopaedia to reveal information which could identify a contributor in a blackmail case involving an unnamed famous businesswoman.

The Wikimedia Foundation said that it would not help to identify the user unless a court order was made, but that if the Court ordered it to release the information it would.

The businesswoman, known as G, claims to be the subject of a blackmail plot and the victim of the publishing in a Wikipedia entry of private and confidential information about her and her young child.

One of G's companies is in dispute with a person whom she believes is also behind a smear campaign against her. An anonymous letter she received appeared to be a threat to claim that her expenses claims amounted to theft. Another anonymous letter disclosed the information that was later published on the Wikipedia page.

G suspects that the same person is behind the letters, the business dispute, the Wikipedia entry and attempts to sell the private information to newspapers.

She asked the High Court to force Wikimedia to reveal the internet protocol (IP) address of the person who made the change to Wikipedia. An IP address can be used by an internet service provider (ISP) to identify which internet connection was used to perform certain functions or view certain pages. This can help to connect a user with certain online activity.

"In ordinary language, the mother believes that she is the subject of an attempt at blackmail," said Mr Justice Tugendhat, granting her order. "On the information before the court, she has reason to believe that."

He said that the IP address should be revealed, even if all of G's suspicions turn out not to be correct.

"Even if there is no link between the person making the claims against the company, the two anonymous letters, and the amendment, [G's position] is no weaker," he said. "If there is no such link, there remains a very strong case that private information has been disclosed by someone. The range of suspects would then include professional advisers."

The Wikipedia article in question is about G and the amendment made was about her and her child. That amendment was deleted from the article after a short time.

Wikimedia told the Court that it would comply with an order, but that there had to be an order before it released user details.

"[Wikimedia] referred to the immunity they claim under section 230 of the US Communications Decency Act (1996) from most civil liability for content they did not originate or develop," said the ruling. That law gives information service providers immunity from responsibility for illegal information or activity that they do not know about.

"They stated that it is the policy of [Wikimedia] that such data be released in response to a valid subpoena or equivalent compulsory legal process," said the ruling.

"Without waiving our insistence that no court in the United Kingdom has proper jurisdiction over us as a foreign entity, we nevertheless are willing to comply with a properly issued court order narrowly limited to the material you ask for in your letter," Wikimedia told the Court.

You can read the ruling here.

Copyright © 2009, OUT-LAW.com

OUT-LAW.COM is part of international law firm Pinsent Masons.

Application security programs and practises

More from The Register

next story
Yorkshire cops fail to grasp principle behind BT Fon Wi-Fi network
'Prevent people that are passing by to hook up to your network', pleads plod
Major problems beset UK ISP filth filters: But it's OK, nobody uses them
It's almost as though pr0n was actually rather popular
UK government officially adopts Open Document Format
Microsoft insurgency fails, earns snarky remark from UK digital services head
HP, Microsoft prove it again: Big Business doesn't create jobs
SMEs get lip service - what they need is dinner at the Club
ITC: Seagate and LSI can infringe Realtek patents because Realtek isn't in the US
Land of the (get off scot) free, when it's a foreign owner
MPs wave through Blighty's 'EMERGENCY' surveillance laws
Only 49 politcos voted against DRIP bill
EU's top data cops to meet Google, Microsoft et al over 'right to be forgotten'
Plan to hammer out 'coherent' guidelines. Good luck chaps!
prev story

Whitepapers

Seven Steps to Software Security
Seven practical steps you can begin to take today to secure your applications and prevent the damages a successful cyber-attack can cause.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Build a business case: developing custom apps
Learn how to maximize the value of custom applications by accelerating and simplifying their development.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.