Reddit blocks Gawker in defence of its right to be really, really creepy

Links from Gawker are banned from /r/politics, after journalist threatens to reveal the identity of the man running Reddit's "creepshots", "beatingwomen" and "jailbait" forums.

Links from the Gawker network of sites have been banned from the Reddit US Politics sub-forum, r/politics. The ban was instigated by a moderator after a Gawker.com journalist, Adrian Chen, apparently threatened to expose the real-life identity of redditor violentacrez, the creator of r/jailbait and r/creepshots. These two sub-forums, or "subreddits" were dedicated to, respectively, sexualised pictures of under-18s and sexualised pictures of women – frequently also under-age – taken in public without their knowledge or consent.

Both subreddits have since been deleted. The first went in a cull of similarly paedophilic subreddits in August last year, which also took down r/teen_girls and r/jailbaitgw ("gone wild", as in "girls gone wild"). The second was made private and then deleted due to the fallout from Chen's investigation.

According to leaked chatlogs, Chen was planning to reveal the real name of violentacrez, and approached him – because come on, it's a he – for comment. That sparked panic behind the scenes, and eventually prompted violentacrez to delete his account.

Reddit's attitude to free speech is a complex one. The extreme laissez-fair attitude of reddit's owners and administrators (the site is owned by Condé Nast, which doesn't interfere in the day-to-day management, and similarly the site administrators typically refuse to police any sub-forums) means that replacements for r/creepshots will likely spring up again, albeit more underground. Indeed, r/creepyshots was started then closed within a day. The ability of any redditor to create any subreddit they want, without the site's administration getting involved, is fiercely protected by the community, and that has led to subreddits focused on topics ranging from marijuana use and My-Little-Pony-themed pornography to beating women (also moderated by violentacrez) and, until yesterday, creepshots.

The moderators of the r/politics subreddit apparently consider Chen's attempt to find out more about violentacrez – a practice known as doxxing – to be in violation of this covenant. They write:

As moderators, we feel that this type of behavior is completely intolerable. We volunteer our time on Reddit to make it a better place for the users, and should not be harassed and threatened for that. We should all be afraid of the threat of having our personal information investigated and spread around the internet if someone disagrees with you. Reddit prides itself on having a subreddit for everything, and no matter how much anyone may disapprove of what another user subscribes to, that is never a reason to threaten them. [emphasis original]

It is important to note that the action is taken only by the moderators of r/politics, and not reddit as a whole. Nonetheless, r/politics is an extremely busy subreddit, one of the defaults to which all new redditors are subscribed, and has almost two million subscribed readers, and likely an order of magnitude more who read without subscribing. Of the last 23 gawker.com links posted to reddit, five went to r/politics.

The whole affair has an extra level of irony, because in hoping to post online publicly available information against violentacrez wishes, Chen was doing exactly the same thing which violentacrez and other moderators of r/creepshots claimed was legal and ethical. By requiring that all photos be taken in a public area – and, after a public outcry, banning photos taken in schools or featuring under-18-year-olds – they hoped to stay on the right side of the law. Even then, however, the rules were regularly flouted, with a de facto "don't ask, don't tell" policy about location and age of the subjects of the photos.

Whether or not Chen publishes the violentacrez "outing", a group of anonymous sleuths tried to take the same idea further. A now-deleted tumblr, predditors, linked reddit usernames to real people. One user, for example, had the same username on reddit.com and music site last.fm, and the last.fm profile contained a link to his Facebook page. Cross-referencing comments about his age, university and hometown allowed the connection to be confirmed, and meant that the blog could put a name and a face to comments like "NIGGERS GET THE KNIFE" and submissions like "a gallery of my personal collection of shorts, thongs, and ass".

Jezebel interviewed the woman behind predditors, who argued that:

CreepShots is a gateway drug to more dangerous hobbies. Fetishizing non-consent "indicates [that CreepShots posters] don't view women as people, and most will not be satisfied with just that level of violation," she said. "I want to make sure that the people around these men know what they're doing so they can reap social, professional, or legal consequences, and possibly save women from future sexual assault. These men are dangerous."

Whether or not she's right, the site is certainly incredibly creepy, and it's hard to feel too sorry for men merely getting a taste of their own medicine. But as this debate has spilled over into the more mainstream areas of the site, Reddit risks becoming increasingly associated with defending the rights of its users to post jailbait and creepshots in the minds of the public. 

Update

Tumblr has reinstated the Predditors blog, and tells me that:

This blog was mistakenly suspended under the impression that it was revealing private, rather than publicly-available, information. We are restoring the blog.

The (anonymous) administrator of the blog itself appears to have set a password on it, however, putting a lid on how far it can go.

The front page of r/politics

Alex Hern is a technology reporter for the Guardian. He was formerly staff writer at the New Statesman. You should follow Alex on Twitter.

Getty
Show Hide image

Marcus Hutchins: What we know so far about the arrest of the hero hacker

The 23-year old who stopped the WannaCry malware which attacked the NHS has been arrested in the US. 

In May, Marcus Hutchins - who goes by the online name Malware Tech - became a national hero after "accidentally" discovering a way to stop the WannaCry virus that had paralysed parts of the NHS.

Now, the 23-year-old darling of cyber security is facing charges of cyber crime following a bizarre turn of events that have left many baffled. So what do we know about his indictment?

Arrest

Hutchins, from Ilfracombe in Devon, was reportedly arrested by the FBI in Las Vegas on Wednesday before travelling back from cyber security conferences Black Hat and Def Con.

He is now due to appear in court in Las Vegas later today after being accused of involvement with a piece of malware used to access people's bank accounts.

"Marcus Hutchins... a citizen and resident of the United Kingdom, was arrested in the United States on 2 August, 2017, in Las Vegas, Nevada, after a grand jury in the Eastern District of Wisconsin returned a six-count indictment against Hutchins for his role in creating and distributing the Kronos banking Trojan," said the US Department of Justice.

"The charges against Hutchins, and for which he was arrested, relate to alleged conduct that occurred between in or around July 2014 and July 2015."

His court appearance comes after he was arraigned in Las Vegas yesterday. He made no statement beyond a series of one-word answers to basic questions from the judge, the Guardian reports. A public defender said Hutchins had no criminal history and had previously cooperated with federal authorities. 

The malware

Kronos, a so-called Trojan, is a kind of malware that disguises itself as legitimate software while harvesting unsuspecting victims' online banking login details and other financial data.

It emerged in July 2014 on a Russian underground forum, where it was advertised for $7,000 (£5,330), a relatively high figure at the time, according to the BBC.

Shortly after it made the news, a video demonstrating the malware was posted to YouTube allegedly by Hutchins' co-defendant, who has not been named. Hutchins later tweeted: "Anyone got a kronos sample."

His mum, Janet Hutchins, told the Press Association it is "hugely unlikely" he was involved because he spent "enormous amounts of time" fighting attacks.

Research?

Meanwhile Ryan Kalember, a security researcher from Proofpoint, told the Guardian that the actions of researchers investigating malware may sometimes look criminal.

“This could very easily be the FBI mistaking legitimate research activity with being in control of Kronos infrastructure," said Kalember. "Lots of researchers like to log in to crimeware tools and interfaces and play around.”

The indictment alleges that Hutchins created and sold Kronos on internet forums including the AlphaBay dark web market, which was shut down last month.

"Sometimes you have to at least pretend to be selling something interesting to get people to trust you,” added Kalember. “It’s not an uncommon thing for researchers to do and I don’t know if the FBI could tell the difference.”

It's a sentiment echoed by US cyber-attorney Tor Ekeland, who told Radio 4's Today Programme: "I can think of a number of examples of legitimate software that would potentially be a felony under this theory of prosecution."

Hutchins could face 40 years in jail if found guilty, Ekelend said, but he added that no victims had been named.

This article also appears on NS Tech, a new division of the New Statesman focusing on the intersection of technology and politics.

Oscar Williams is editor of the NewStatesman's sister site NSTech.