Originally published April 24, 2011 at 8:53 PM | Page modified April 25, 2011 at 6:39 AM

Comments      E-mail E-mail article      Print Print      Share Share

False porn accusations underscore Wi-Fi privacy dangers

It's unknown how often unsecured routers have brought legal trouble for subscribers. Besides the criminal investigations, the Internet is full of accounts of people who've had to fight accusations of illegally downloading music or movies.

The Associated Press

What you can do

The government's Computer Emergency Readiness Team recommends home users make their networks invisible to others by disabling the identifier broadcasting function that allows wireless access points to announce their presence.

It also advises users to replace any default network names or passwords, since those are widely known, and to keep an eye on the manufacturer's website for security patches or updates.

People who keep an open wireless router won't necessarily know when someone else is piggybacking on the signal, which usually reaches 300-400 feet, though a slower connection may be a clue.


BUFFALO, N.Y. — Lying on his family-room floor with assault weapons trained on him, shouts of "pedophile!" and "pornographer!" stinging like his fresh cuts and bruises, the Buffalo homeowner didn't need long to figure out the reason for the early-morning wake-up call from a swarm of federal agents.

That new wireless router. He'd gotten fed up trying to set a password. Someone must have used his Internet connection, he thought.

"We know who you are! You downloaded thousands of images at 11:30 last night," the man's lawyer, Barry Covert, recounted the agents saying. They referred to a screen name, "Doldrum."

"No, I didn't," the man insisted. "Somebody else could have but I didn't do anything like that."

"You're a creep ... just admit it," they said.

Law-enforcement officials say the case is a cautionary tale. Their advice: Password-protect your wireless router. Plenty of others would agree.

The Sarasota, Fla., man, for example, who got a similar visit from the FBI last year after someone on a boat docked in a marina outside his building used a potato-chip can as an antenna to boost his wireless signal and download an astounding 10 million images of child porn.

Or the North Syracuse, N.Y., man who in December 2009 opened his door to police who had been following an electronic trail of illegal videos and images. The man's neighbor pleaded guilty April 12.

For two hours that March morning in Buffalo, agents tapped away at the homeowner's desktop computer, eventually taking it with them, along with his and his wife's iPads and iPhones.

Within three days, investigators determined the homeowner had been telling the truth: If someone was downloading child pornography through his wireless signal, it wasn't him.

About a week later, agents arrested a 25-year-old neighbor and charged him with distribution of child pornography. The case is pending in federal court.

It's unknown how often unsecured routers have brought legal trouble for subscribers. Besides the criminal investigations, the Internet is full of accounts of people who've had to fight accusations of illegally downloading music or movies.

Whether you're guilty or not, "you look like the suspect," said Orin Kerr, a professor at George Washington University Law School, who said that's one of many reasons to secure home routers.

Experts say the more savvy hackers can go beyond just connecting to the Internet on the host's dime; they can monitor Internet activity and steal passwords or other sensitive information.

A study released in February gives a sense of how often computer users rely on the generosity, or technological shortcomings, of neighbors to gain Internet access.

The poll conducted for the Wi-Fi Alliance, the industry group that promotes wireless technology standards, found that among 1,054 Americans ages 18 and older, 32 percent acknowledged trying to access a Wi-Fi network that wasn't theirs.

An estimated 201 million households worldwide use Wi-Fi networks, according to the alliance.

Germany's top criminal court ruled last year that Internet users must secure their wireless connections to prevent others from illegally downloading data.

The court said users could be fined up to $126 if a third party takes advantage of their unprotected line, though it stopped short of holding the users responsible for illegal content downloaded by the third party.

The ruling came after a musician sued an Internet user whose wireless connection was used to download a song, then offered on a file-sharing network. The user was on vacation when the song was downloaded.

Court filings show exactly what led Immigration and Customs Enforcement officers to the Buffalo homeowner, who didn't want to be identified.

On Feb. 11, an investigator with the Department of Homeland Security, which oversees cybersecurity enforcement, signed in to a peer-to-peer file-sharing program from his office. After connecting with someone by the name of "Doldrum," the agent browsed through his shared files and found images and videos depicting children in sexual acts.

The agent identified the IP address, or unique identification number, of the router, then got the service provider to identify the subscriber.

Investigators could have taken an extra step before entering the house and used a laptop or other device outside to see whether there was an unsecured signal.

That alone wouldn't have exonerated the homeowner, but it would have raised the possibility someone else was behind the downloads.

After a search of the homeowner's devices proved the man was innocent, investigators went back to the peer-to-peer software and looked at logs that showed what other IP addresses Doldrum had connected from.

Two were associated with the State University of New York at Buffalo and accessed using a secure token the university said was assigned to a student in an apartment adjacent to the homeowner. Agents arrested John Luchetti on March 17. He has pleaded not guilty to distribution of child pornography.

Luchetti is not charged with using his neighbor's Wi-Fi without permission. Whether it was illegal is up for debate.

Comments      E-mail E-mail article      Print Print      Share Share