Interesting to see...
if the ConLibs have the bottle to stand up to Uncle Sam and sort out this lop-sided extradition treaty fiasco.
Supporters of Gary McKinnon are anxiously awaiting a Cabinet Office decision on whether the coalition government will halt his extradition proceedings. While in opposition, cabinet ministers (most notably Nick Clegg and Dominic Grieve, the new attorney general) supported the campaign against the extradition of the Asperger's …
Why is the extradition treaty always described as one sided? It seems damn near impossible to extradite anyone from the UK. The system seems to allow appeals indefinitely in the hope of a favourable outcome. To any country, not just the US.
Would we be happy if a foreign country allowed extraditions to drag on ad infinitum? No.
It's one sided because the british authorities have to produce evidence that would be used in the courts, where as if I understand correctly all the US has to have is suspicion and can request extradition on this. It's lucky we have an appeals process. Going on the US administration pulling out other legal agreements would they have allowed a US citizen to be extradited on similar charges (I think not)
Extradition to many jurisdictions is hard, but extradition to other EU members is simples under the EU Warrant system.
Extraditions in most countries, including ours, drag on for the simple fact that extradition has a huge number of legal issues to address and appeal against, and a good defense can use political issues when that fails.
I'm beginning to see the benefits of systems like Russia, which does not allow extradition of their citizens.
He broke the law. He admits he broke the law. There is an agreement (no matter what you think about it) that the Americans can extradite him for trial in the US. What's there to decide?
I don't understand the medical side of the argument either. As far as I (and wikipedia) know, Asperger syndrome affects social interaction, not the ability to know the difference between right and wrong.
that the US are making false claims with which to prosecute him?
Mainly, that the US left all their doors wide open, but are claiming "damage and replacement of all doors and locking mechanisms thereof".
If they were charging him simply with entering a classified system, then fair enough. However that on it's own wouldn't be enough to extradite him from the UK. Instead the US have come up with a clearly fraudulent claim for damages caused, that just happens to match the figure required for him to be extradited.
The US is outright lying, but people from the US seem to be intent on ignoring this simple fact.
The only thing physically damaged was uncle sams pride.
The USA inflated the "damage" caused so they could use this treaty to force extradition. Most of the "costs" were made up from the time spent putting BASIC SECURITY in place (like, err, changing default passwords). Something someone would have expected them to have done.
If I leave my house unlocked and I get robbed, sure; do the robber for what they took.
But there is no way in hell I should be able to claim costs from the robber for locks etc.
There is also the fact that the treaty (now ratified by the USA) is totally one-sided and that our government of the day abdicated its responsibility to protect British citizens. Just because it is law, does not make it right.
McKinnon should be tried here and sentenced here (if found guilty). And any sentence should be suspended due to the total shit-storm he and his family have had to put up with over the abject failure of the USA to get their house in order.
Did they learn the square root of fuck-all from Clifford Stoll?
"He broke the law. He admits he broke the law. There is an agreement (no matter what you think about it) that the Americans can extradite him for trial in the US. What's there to decide?"
Well there's the decision whether the UK's obligations to bend over for uncle sam abrogate their responsibilities to protect UK citizens from the actions of a state where torture is legal for starters.
Secondly there's the decision whether the "crime" really should be extraditable in any just sense under a treaty that didn't come into effect till years after the "crime" was committed.
Finally, I think "broke the law" is being a bit fanciful - in that he did nothing in principle more onerous than pointing a web browser at a government computer that was wide-open on the internet.
What there is to decide is if the potential punishment is just, and and if fits the crime. Stealing paperclips from your employer is 'wrong' and murder is 'wrong'. They are both wrong, and both against the law. Therefore anyone committing either offense should be hanged ? Or anyone committing either offense should be fined ? Of course not. Any punishment should be proportional to the crime committed. Seems to me that the poor chap has been through so much shit already with this that what he has gone through would constitute a cruel and unusual punishment anyway.
1. The stalinista Bliar/Broon axis of incompetence/malicious envy/venal corruption committed this country to a lopsided treaty which means that UK citizens can be handed to the yanks on demand, but their citizens are almost impossible to extradite to this country.
2. The treaty was supposed to apply to terrorist suspects in the illegal "war" against an abstract phantom enemy, namely terrorism.
3. "Terrorism" is not a tanglble physical enemy and is by definition unquantifiable not least since one man's terrorist is another man's freedom fighter (ever heard of Nelson Mandela?). The war therefore lacks a legitimate casus belli.
Get it now?
It's not just social interaction although that's a big bit...quote from the wikipedia article on Asperger's you refer to yourself :
"People with Asperger syndrome often display behavior, interests, and activities that are restricted and repetitive and are sometimes abnormally intense or focused"
Something like an overwhelming interest in UFO's, and a need to obtain proof would fit into the asperger's mould quite well. As would a fairly obsessive interest in computer hackery.
As for right and wrong...that's not so straightforward. You'd have to ask him I guess, although I know a number of people with Asperger's syndrome who have great difficulty comprehending the rules that non-autistic society imposes....it's not quite a matter of wilful ignorance, more of one of completely different brands of logic, or the profound dominance that these specific interests can have in people with autistic spectrum traits, or the profound anxiety caused by living in a world which is not at all sympathetic to the needs of people with autistic traits. Careful assessment required there before knee-jerk judgements about knowing right from wrong.
As for this extradition abomination...care to discuss the right and wrong of the prolonged torture he's been put through over the past 9 years? And make no bones, for someone on the autistic spectrum, what he's gone through has been torture. Honestly, he's suffered enough.
The person may indeed know the difference between right and wrong as you point out but the level of their obsession with a particular subject, UFO's in McKinnons case, will often mean they are unable to recognise or even stop this behaviour.
From what I understand this has been the main reason for the appeals, he was unable to moderate his behaviour due to his Asperger's.
"..he broke the law - he admits it - there's an extradition treaty with the Americans- what's to decide..."
Um.. this is a game of pass-the-parcel.
Yes, there is an extradition treaty. Yes, the court case was quite watertight under the treaty. Yes, the treaty is manifestly unfair. And Yes, the Yanks under Bush didn't give a flying f*** about that when they were looking to justify aggressive action round the world.
However, NOW, it would be a huge embarrassment to both new administrations if it were to go ahead. BUT, as you say, the law is unambiguous.
SO, let us watch the dance as both sides start to tie themselves into knots...
A treaty that hasn't been properly ratified by all parties to it is not binding on either party. The UK government has been acting wrongly in extraditing under the rules of the treaty prior to full ratification by the US government. So, to the question "What's there to decide?" posted by "DoesAnyoneSpeakSense", there is nothing to decide - he shouldn't be extradited without due process.
This lie needs to die, It has been ratified by both parites for well over 3 years now.
On 30 September 2006 the US Senate unanimously ratified the treaty.
On the other hand, if you want to argue that the treaty lacks reciprocity then carry on.
Introduce an Act that makes extradition unlawful where the accused submits a guilty plea to the equivalent UK offence.
Result of this: McKinnon has already admitted guilt under the Computer Misuse Act, he'd get a slap on the wrist from a UK judge, perhaps with a short stay in a UK prison (or more likely a suspended sentence)
Err .... As the US is known to torture suspects, surely yesterday's ruling under the Human Rights Act re the Al Qaeda terrorists/operatives/wannabes who were not deported and are allowed to stay in Great Britain .... http://www.timesonline.co.uk/tol/news/politics/article7130645.ece ..... must clearly mean that Gary McKinnon cannot be sent to Uncle Sam?
He claims to have been looking for UFO archivage, but clearly knew he was hacking and wouldn't have done so if he'd stopped to think of the penalties - if he'd hacked Westminsters servers and Whitehall computers would he also be exempt from the criminal process?
I think not, although it seems some people think Aspies should obviously be exempt from the law.
He should (and can only, given the crimes and the information accessed) be tried in the US where there's not much possibility of an unfair trial as compared to some other nations - but perhaps he could be deported back to the UK if the Americans agree he can serve his sentence in a UK gaol.
Why should he not be subject to the law? It's not as if he's spent years in Guantanamo Bay...
Why should someone with ab autistic
Why do you think you're not subject to North Korean law? Because you're not in North Korea. If you break a North Korean law (and you've probably broke several today without even realising) you don't have to worry about getting deported. He's out of US jurisdiction so how can they touch him? The UK courts however...
This post has been deleted by its author
Could be worse, it could be a car analogy.
@Geeks and Lies. But nothing was messed up (ok, front door was left ajar). No damage was done. Can I now claim the cost of fitting proper locks from your fictitious criminal? Hmm...thought not.
Analogies are like bottles of milk left in the sun, mostly bad. :oP
This post has been deleted by its author
... that he got out without hurting himself on my property and therefore didn't have an excuse to sue me.
No but yeah but I get the weak analogy and might like to see him do a few hours community service, I doubt I'd be expecting for him to be extradited though.
I'd probably get over it pretty quickly as I did when I was really burgled (although it wasn't technically burglary, only theft because they popped the Yale lock without damaging it - even more similar to what McKinnon did by all accounts, apart from the theft bit). If only they had rummaged around and left me a note saying 'you might want to look into getting a better lock mate'. They took a lot more than my secret stash of UFO pics but I still wouldn't want them shot or forced to live in a prison with Americans - I'm sure there's a human right about that somewhere.
I still think that Gary McKinnon should be rehabilitated in the UK, and put to work in the new CyberWarfare Dept in the UK or for the Euros. It's pretty clear he has a flair for entering "closed" networks, and should be put under harness.
He wasn't malicious in his lawbreaking (except for exposing US "lies" on UFOs), and any damage caused was motivated by activism. I think he would work hard for our spooks if given this chance, and I recommend this action. If he goes to trial, the judge could suspend his sentence on condition he does sterling service for the spooks. Everyone's a winner!
We've had that idiot Lord West saying we need "Naughty boys" to hack for the government, a clear breach of laws in this country. And here's a guy with a diagnosed medical condition, hardly pilfering state secrets, taking advantage of grossly lax security measures, suffered several years of stress at not knowing his fate, and continual Home Secretaries admitting they'd got it wrong - AFTER they'd left office.
For the new government to now do nothing, sends a clear indication that the Civil Liberties pledges were nothing more than a front to gain power. Indeed, Nick Clegg himself talked about the "Great Repeal" today, but was far more cagey about IMP.
In a week that has seen suspected foreign terrorists unable to be deported because of potential infringements of their human rights, I hope our new government are more enlightened than the previous one.
McKinnon makes a good point about the location of the crime.
For extradition to be valid, this is required:
The crime committed has to be a crime in both countries, the country where the crime took place, and the country where the perpetrator currently resides.
Those two countries are usually different.
The problem is that this model applies to conventional crime and not computer crime.
The country that McKinnon resides in, that's the easy bit, it's the UK.
The country where the crime was committed? Is that the UK or the USA?
The target of his crime were computers in the USA. No doubt about that.
But where was the crime committed?
McKinnon and his tools used to commit the crime were in the UK.
There's two viewpoints on this:
1) That the crime was committed in the USA because that's where the computers he accessed were located.
2) That the crime was carried out in the UK, as that's where Gary physically was, he never left the UK to commit any crime.
Why is one more valid than the other? Some would argue that 1 is right, some would argue that 2 is right. There is no right or wrong here, it's a subjective opinion.
I would certainly hope the officials take into consideration:
a) The American attitude towards McKinnon.
It's quite clear: they've made statements to the effect that they want to make an example of him
2) They want to treat him very unfairly in relation to other computer crimes committed in the past by others.
3) The Yanks could have put an extradition request in before the new extradition agreement came into effect. They have only submitted a request for extradition under easier rules, so how serious an issue was it for them, how much evidence do they actually have when they could have used the old extradition rules?
It's quite clear that McKinnon, he may receive a fair trial, but I think it's almost certain that he will not receive a fair punishment.
We have laws in the UK for this crime so why not try him under our rules?
A guy embarrassed the f**k out of the the American government, showed them up for a bunch of muppets for what they really are when it comes to IT security, sure heck they're embarrassed about it.
Can't keep out a guy from your military and NASA computers because you don't even have passwords set? That's one of the biggest crimes you can commit! Had it been private industry, prosecutions against the company would have ensued, people would have been fired. Being government departments in the USA, probably operate in the same was as the UK, safe as houses job, and no-one gets fired.
It's patently clear, the reason why they want to try him under their rules is because their punishments are much harsher.
Our IT access rule are virtually the same, it's a crime in the USA, it's a crime here.
Let them send their prosecutors here.
Looking at the public statements they've made and the entire way they have gone about this case, I don't honestly think McKinnon will get a fair trial and definitely not a fair sentence.
As is typical with law, it can't keep pace with modern technology.
The extradition model simply does not apply to remote IT crime. Those of you making comparisons with burglary are simply way off the mark.
Since when can a burglar in the UK, be in the UK and commit a crime of burglary at the exact same instant in time in the USA? It's physically not possible: a human being can't not be in two places at exactly the same instant in time..an electron possibly, but not a human.
The Yanks and British lawyers are trying to apply the concept of extradition to something which it just doesn't cover, it's not designed for this.
So, in that event, thinking logically about, what position should prevail?
The logical position has to fall back onto UK law and not involve extradition law.
And there's nothing wrong with falling back onto UK law, because we have the law that deals with this crime, the Computer Misuse Act.
So why are we trying to apply law to something which wasn't designed for when we already have the law which is designed for it?
If there's a short coming in the extradition agreement because it fails to deal with this kind of crime, which really is in a category of its own, then that's tough, it's a loop hole, it's a technicality which can be exploited. That happens all the time in law.
The lawyers need to go away and redraft the legislation to deal with this kind of problem. That's their fault for not doing their job properly in the first instance, and it's for them to fix it.
It's not the subject matter, dear, it's the screaming tedium of the trite rhetoric surrounding it, do you see?
But hey, if you want to go down this route, fill your boots. I'll let them all through until I get bored and start nixing you. Then I can watch you hop up and down with impotent fury like a wasp in a jam jar while the thread carries on without you. Yeah? Great.
If I shot a missile from the UK to the US and it landed there and did some damage, would the crime be tried in the UK or the US ?
If it did no damage at all but the US said that the damage value was the cost of installing a new missile detection and defence system, would that be ok then ?
I just wish McKinnon hadn't tried to use his condition as a way of handling the case; it clouds the issue and many people are unaware of the range of effects of the condition. Perhaps it is better to first consider what would happen if he was normal.
A political activist, convinced of the existence of a Ridiculous Fantasy From The X Files Big Government Cover Up (tm), hacks into a computer system that is weakly protected, sniffs around for evidence for a smoking gun and gets caught. There is little damage caused by the act itself, but panic causes the victim to suddenly perform a lot of security work that should have been done in the first place.
In the UK (imagine he'd done it to GCHQ) we already have laws for that; it'd be worth a heavy fine and a suspended sentence or a few years in prison, depending on the severity of the offence.
Consider the arguments about (a) applying the concept of extradition before the law is updated to take account of new technology, (b) failing to fall back on appropriate UK law in light of that, (c) exaggerating an unextraditable and relatively less serious offence into an extraditable and serious crime for the sake of national pride, (d) exaggerating estimates of damage caused by the criminal act (see (c)), (e) differences in prison regimes and sentencing, (f) and this is the **only** relevance of Asperger's Syndrome, how well the legal system in the imprisoning country prevents disabled criminals from being abused by other convicts during incarceration.
While worth examining in themselves, they all miss the fundamental problem: the **retro-active** use of a **new** agreement, thus contravening the spirit of one of the holiest and most sacred principles of UK law.
For any government to break one of a country's most sacred legal principles for the sake of expediency is a truly terrifying act, since it seriously compromises the Rule of Law and means that potentially "none of us are safe". Accordingly, it is something that can be considered **only in the most extreme circumstances**, for example the 1946 war crimes trials and suchlike.
McKinnon's crime was nowhere near on a par with genocide or institutionalised child abuse; accordingly, his extradition should be prohibited by legal principle alone. Having said that, he shouldn't get away with it, so we should just use the Computer Misuse Act and have done with it.
The only real damage McKinnon did was to someone's ego, hence the level of vindictiveness being shown by the Americans. The Asperger's Syndrome defence seems dubious to me and he may well be guilty of an offence under the CMA but that should hardly warrant extradition FFS. There's probably no point even trying him here now given that a court could reasonably conclude the ordeal he has been through as a result of this farce is punishment enough already.
I love you, those responses made my day! I have a new favourite word now too :D
RSA Conference An ambitious project spearheaded by the World Economic Forum (WEF) is working to develop a map of the cybercrime ecosystem using open source information.
The Atlas initiative, whose contributors include Fortinet and Microsoft and other private-sector firms, involves mapping the relationships between criminal groups and their infrastructure with the end goal of helping both industry and the public sector — law enforcement and government agencies — disrupt these nefarious ecosystems.
This kind of visibility into the connections between the gang members can help security researchers identify vulnerabilities in the criminals' supply chain to develop better mitigation strategies and security controls for their customers.
Spyware developed by Italian firm RCS Labs was used to target cellphones in Italy and Kazakhstan — in some cases with an assist from the victims' cellular network providers, according to Google's Threat Analysis Group (TAG).
RCS Labs customers include law-enforcement agencies worldwide, according to the vendor's website. It's one of more than 30 outfits Google researchers are tracking that sell exploits or surveillance capabilities to government-backed groups. And we're told this particular spyware runs on both iOS and Android phones.
We understand this particular campaign of espionage involving RCS's spyware was documented last week by Lookout, which dubbed the toolkit "Hermit." We're told it is potentially capable of spying on the victims' chat apps, camera and microphone, contacts book and calendars, browser, and clipboard, and beam that info back to base. It's said that Italian authorities have used this tool in tackling corruption cases, and the Kazakh government has had its hands on it, too.
NSO Group told European lawmakers this week that "under 50" customers use its notorious Pegasus spyware, though these customers include "more than five" European Union member states.
The surveillance-ware maker's General Counsel Chaim Gelfand refused to answer specific questions about the company's customers during a European Parliament committee meeting on Thursday.
Instead, he frequently repeated the company line that NSO exclusively sells its spyware to government agencies — not private companies or individuals — and only "for the purpose of preventing and investigating terrorism and other serious crimes."
Europol cops have arrested nine suspected members of a cybercrime ring involved in phishing, internet scams, and money laundering.
The alleged crooks are believed to have stolen "several million euros" from at least "dozens of Belgian victims," according to that nation's police, which, along with the Dutch, supported the cross-border operation.
On Tuesday, after searching 24 houses in the Netherlands, officers cuffed eight men between the ages of 25 and 36 from Amsterdam, Almere, Rotterdam, and Spijkenisse, and a 25-year-old woman from Deventer. We're told the cops seized, among other things, a firearm, designer clothing, expensive watches, and tens of thousands of euros.
Air raid sirens sounded for over an hour in parts of Jerusalem and southern Israel on Sunday evening – but bombs never fell, leading some to blame Iran for compromising the alarms.
While the perpetrator remains unclear, Israel's National Cyber Directorate did say in a tweet that it suspected a cyberattack because the air raid sirens activated were municipality-owned public address systems, not Israel Defense Force alarms as originally believed. Sirens also sounded in the Red Sea port town of Eilat.
Netizens on social media and Israeli news sites pointed the finger at Iran, though a diplomatic source interviewed by the Jerusalem Post said there was no certainty Tehran was behind the attack. The source also said Israel faces cyberattacks regularly, and downplayed the significance of the incident.
Updated A former Seattle tech worker has been convicted of wire fraud and computer intrusions in a US federal district court.
The conviction follows the infamous 2019 hack of Capital One in which personal information of more than 100 million US and Canadian credit card applicants were swiped from the financial giant's misconfigured cloud-based storage.
Paige Thompson (aka "erratic") was arrested in July 2019 after data was leaked between March and July of that year. The data was submitted by credit card hopefuls between 2005 and early 2019, and Thompson was able to get into Capital One's AWS storage thanks to a "misconfigured web application firewall."
A US task force aims to prevent online harassment and abuse, with a specific focus on protecting women, girls and LGBTQI+ individuals.
In the next 180 days, the White House Task Force to Address Online Harassment and Abuse will, among other things, draft a blueprint on a "whole-of-government approach" to stopping "technology-facilitated, gender-based violence."
A year after submitting the blueprint, the group will provide additional recommendations that federal and state agencies, service providers, technology companies, schools and other organisations should take to prevent online harassment, which VP Kamala Harris noted often spills over into physical violence, including self-harm and suicide for victims of cyberstalking as well mass shootings.
Law enforcement agencies around the world have arrested about 2,000 people and seized $50 million in a sweeping operation crackdown of social engineering and other scam operations around the globe.
In the latest action in the ongoing "First Light", an operation Interpol has coordinated annually since 2014, law enforcement officials from 76 countries raided 1,770 call centers suspected of running fraudulent operations such as telephone and romance scams, email deception scams, and financial crimes.
Among the 2,000 people arrested in Operation First Light 2022 were call center operators and fraudsters, and money launderers. Interpol stated that the operation also saw 4,000 bank accounts frozen and 3,000 suspects identified.
RSA Conference Living off the land is so 2021. These days, cybercriminals are living off the cloud, according to Katie Nickels, director of intelligence for Red Canary and a SANS Certified Instructor.
"It's not enough to pay attention to the operating systems, the endpoints, said Nickels, speaking on a SANS Institute panel about the most dangerous new attack techniques at RSA Conference. "Adversaries, a lot of their intrusions, are using cloud services of different types."
And yes, living off the land (or the cloud), in which intruders use legitimate software and cloud services to deploy malware or spy on corporations and other nefarious activities, isn't a new type of attack, Nickels admitted. "But what's new here is the levels to which using cloud services [for cyberattacks] has risen."
Microsoft has obtained a court order to seize 41 domains used by what the Windows giant said was an Iranian cybercrime group that ran a spear-phishing operation targeting organizations in the US, Middle East, and India.
The Microsoft Digital Crimes Unit said the gang, dubbed Bohrium, took a particular interest in those working in technology, transportation, government, and education sectors: its members would pretend to be job recruiters to lure marks into running malware on their PCs.
"Bohrium actors create fake social media profiles, often posing as recruiters," said Amy Hogan-Burney, GM of Microsoft's Digital Crimes Unit. "Once personal information was obtained from the victims, Bohrium sent malicious emails with links that ultimately infected their target's computers with malware."
Biting the hand that feeds IT © 1998–2022