Wednesday, March 27, 2024

TorrentFreak's Latest News

 

'Operation 404' Results in First Prison Sentence for Pirate IPTV Operator
Ernesto Van der Sar, 27 Mar 11:05 AM

operation 404In the fall of 2019, Brazilian law enforcement agencies launched the first wave of anti-piracy campaign 'Operation 404,' referring to the well-known HTTP error code.

With help from law enforcement in the United States, the United Kingdom, and Argentina, the authorities took down more than a hundred sites and services, while several suspects were arrested.

Following its initial successes, several new waves 'Operation 404' were initiated over the ensuing years. Each wave led to raids and takedowns across the country, with assistance from international law enforcement partners. It was clear that Brazil had its enforcement apparatus in order, but the outcomes of these efforts in terms of follow-up actions were largely unknown.

This week, anti-piracy group ALIANZA booked its first '404' related victory in court. Following a criminal complaint from the group, Judge Marina Figueiredo Coelho of the Fifth Criminal Court of Campinas, Sao Paolo, convicted the operator of a pirate IPTV service that was taken down in 2020.

Prison for Flash IPTV Operator

The operator of Flash IPTV, who is referred to by the initials A.W.A.P., was found guilty of criminal copyright infringement and sentenced to five years and four months in prison.

Flash IPTV was a relatively large IPTV service with 13,547 active users at its peak. According to local news reports, the service generated R$4,542,034 ($912,000) in revenue over twelve months, before it was taken offline in 2020 as part of the second 'Operation 404' campaign.

Speaking with TorrentFreak, ALIANZA says that this is a historic verdict, as it's the first criminal IPTV prosecution linked to 'Operation 404' in Brazil.

"We appreciate the commitment of the police and judicial authorities in resolving this important case. The conviction of A.W.A.P. is a milestone that reinforces our commitment to defending the rights of creators and fighting against illegal practices that harm the creative economy," says Víctor Roldán, ALIANZA's executive director.

More to Come?

A copy of the verdict wasn't released to the public, as is common with these types of convictions, so further details are scarce.

While Operation 404 resulted in many arrests over the years, follow-up prosecutions have been rare in Brazil. Previously, ALIANZA did score a similar victory in Ecuador, where the operator of the pirate IPTV service IPTVlisto.com was sentenced to a year in prison.

Last fall, Brazilian authorities conducted the sixth wave of Operation 404 and more are expected to follow in the future. These enforcement initiatives are broadly praised by rightsholders and the recent conviction will only strengthen their support.

There's always room for improvement, of course. A few weeks ago, the International Intellectual Property Alliance (IIPA) recommended Brazil to remain on the US 'Special 301' Watch List of countries with IP-related challenges.

IIPA saw various positive developments, especially regarding Operation 404. However, disagreement between rightsholders over enforcement action could still improve.

"Brazil still suffers from a lack of specific norms and regulations regarding the enforcement of copyrighted works over the Internet and a lack of resources and staff to support enforcement actions considering the reach and amount of content piracy in the region," IIPA wrote.

From: TF, for the latest news on copyright battles, piracy and more.

Piracy Shield Source Code & Internal Documentation Leak Online
Andy Maxwell, 26 Mar 10:30 PM

Logo piracy shieldEver since Italian authorities announced their intent to introduce an even more aggressive anti-piracy blocking system than the one already in place, controversy has rarely been far behind.

Recent reports of avoidable overblocking, a reluctance to admit that the Piracy Shield system is fallible, and new reports that telecoms regulator AGCOM is now rejecting complaints from wrongfully blocked Cloudflare customers, are just some of the ingredients in a volatile mix that has always threatened to boil over.

Piracy Shield: Source Code Leaked Online

In what could develop into the biggest crisis yet for the Piracy Shield system and those who operate it, nine repositories of source code, internal documentation, and other related data, claiming to be the various components of the Piracy Shield system, appear to have leaked online.

An announcement in Italian and English, posted on GitHub a few hours ago, criticizes AGCOM and SP Tech Legal, the law firm-linked developer behind Piracy Shield, for creating a "tool of censorship disguised as a solution to piracy."

Piracy Shield Leak Announcement

The main 'fuckpiracyshield' repository on GitHub was created by a user of the same name; they appear to have joined the site for the purposes of leaking the code online and, after signing up at 15:55 on Tuesday, by 16:50 they were gone. Aside from the leaked material, a message was left behind.

"This is not the way to stop piracy. This is a gateway to censorship," the bio message reads.

Content Allegedly Leaked

The apparently leaked collection spans nine repositories; they are named and described as follows:

frontend (The frontend of Piracy Shield), data (Guides for the ISPs and reporters that use Piracy Shield), variations (Some code that was probably used for testing for Piracy Shield?), service (Services and main logic of the Piracy Shield API), data-storage (Storage and filesystem management for the Piracy Shield API), data-model (Data models of objects used by the Piracy Shield code), component (Components needed by other Piracy Shield packages), api (This is the API for Piracy Shield)

piracy-shield-leak

For those unfamiliar with Python or no interest in code, period, the 'data' repository probably offers the most interesting information. It contains what appears to be up-to-date operations manuals for Piracy Shield, with the 'ISP TECHNICAL MANUAL – PIRACY SHIELD' described as v2.4.1, current on February 2nd when Piracy Shield made its full debut.

All documents are named and presented in Italian and the titles suggest that there are two versions of two distinct manuals: 'Piracy Shield Manual' and 'Piracy Shield Error Codes'. One version seems to be directed at those reporting domains and IP addresses for blocking and the other toward the ISPs expected to carry out the blocking.

Unusual Feature of the Leak

When browsing the source code and attempting to work out its purpose, on some repositories something immediately stands out. With no assumptions as to who the name refers, a contributor to the Piracy Shield project appears to be someone called Daniele Maglie. Their name appears time and again throughout the code, which in itself isn't especially unusual.

However, when looking more closely at the leaker's bio, which includes an image of AGCOM's president apparently deep in thought, leaving the mouse pointer in place for a moment produces a piece of popup text, as highlighted in the image below.

piracy shield popup

What the text means, if indeed it means anything at all, will be just one of the questions being asked in the days to come. In the meantime, AGCOM has yet another blocking target to contend with, although a DMCA notice will be much more effective.

From: TF, for the latest news on copyright battles, piracy and more.

Live 'Piracy Shield' Data Exposed By New Platform Reveals Akamai IP Blocking
Andy Maxwell, 26 Mar 03:01 PM

Logo piracy shieldAfter initially denying that Italy's new Piracy Shield anti-piracy platform had been responsible for any over-blocking, last week telecoms regulator AGCOM conceded that an IP address belonging to Cloudflare had been blocked in error.

While that might be considered progress of sorts, the incident was downplayed as minor on the basis it was rectified a few hours later. No consolation for the many Cloudflare customers affected, of course, but that particular problem isn't going away. Cloudflare is encouraging its customers to file complaints to draw attention to the perils of widespread blocking measures.

Yet despite calls for more transparency, not to mention an obvious need, AGCOM is still not reporting the IP addresses subjected to blocking, instead preferring to report the volume of IP addresses blocked instead. While the latter is not unimportant information, only the former can shine light on cases where IP addresses are blocked in error. Or when IP addresses are blocked despite the legal provision that prohibits blocking when IPs are not exclusively used for piracy.

New Third-Party Service Imposes Transparency

Official providers of all types of content have understood for some time that if they don't meet demand, someone else will do it for them. After calls for transparency appeared to fall on deaf ears, transparency has been imposed on the Piracy Shield system thanks to a new, unofficial third-party system: Piracy Shield Search.

The most important feature of the service is the ability to enter an IP address or a fully qualified domain name (FQDN) to find out whether they're on the Piracy Shield system.

piracyshield-search

The image below consists of an original blocking order (translated from Italian) issued in response to a blocking application by Sky Italia. To protect Sky's broadcasting rights for FIM MotoGP World Championship and the Motul FIM Superbike World Championship, the domain http://live.vitocatozzo.eu was added to the Piracy Shield system.

piracy-shield-search-ticket

The response from Piracy Shield Search added by us directly underneath the relevant section in the application confirms that the domain was indeed placed on the blocklist. The response also provides the time the rightsholder or its representative added the ticket to the system, which acts as the instruction for ISPs to go ahead and start blocking.

Rightsholder Tickets and Top AS By IP Address

The Piracy Shield Search system shows data relating to currently active blocking, not the total number of requests made or IP addresses/domains blocked to date.

In the image below we can see that 662 rightsholder tickets are currently live, and together they target 2,849 IPv4 IP addresses, zero IPv6 IP addresses, and 6,601 fully qualified domain names. The panel on the right shows the top AS (autonomous systems) ranked by the total number of IP addresses allocated to the AS that are currently subject to blocking.

tickets-ip blocks

The ticket panel on the left shows that the system deployed in Italy operates similarly to the blocking system operated in the UK.

Much is made in the media about the requirement to block IP addresses and domains within 30 minutes, possibly to imply that blocking takes place mostly during live matches. However, the two items at the top of the list show that IP addresses and domains are typically added in bulk, long after matches finish or, alternatively, long before they actually start.

Tickets Reveal More Blocking Blunders

The people behind Piracy Shield Search have decided to partially redact IP addresses requested for blocking in rightsholder tickets. Since the search facility on the front page responds to requests for specific IP addresses, there's no need to expose the IP addresses in full here.

However, since the names of the hosts are displayed in full, it's possible to determine whether the IP addresses that appear on the left are likely to be operated by CDN companies. More importantly, there may also be enough information to determine whether multiple services potentially share the IP address.

piracy-shield-tickets

In a post to X, developer and researcher Matteo Contrini confirms what many people had suspected; Cloudflare isn't the only major CDN provider whose IP addresses have ended up on the Piracy Shield system.

akamai piracy shield blocks

"The platform #PiracyShield is blocking 15 Akamai IP addresses! Not only Cloudflare but also the largest CDN in the world…," Contrini notes.

The data suggests that transparency is a double-edged sword. Without transparency, there's no scrutiny, and no specific fuel for criticism. When transparency exists, whether voluntarily or by imposition, scrutiny ensures that criticism can be backed up by data provided by the system itself.

What transparency offers that opacity never does, however, is a powerful incentive to do better. Whether the addition of these IP addresses is due to blunder after uncorrected blunder isn't clear, but the alternative is unquestionably much worse.

From: TF, for the latest news on copyright battles, piracy and more.

270x90-blue

Are you looking for a VPN service? TorrentFreak sponsor NordVPN has some excellent offers.

 
 
Powered by Mad Mimi®A GoDaddy® company

No comments: