Artists Against 419

Artists Against 419 (commonly abbreviated to AA419) is an Internet community dedicated to identifying and shutting down 419 scam websites. Its members work pro bono to stop, disrupt or hinder fraudsters' activities.

The site was set up in October 2003 and began tackling fake banks in an artistic way: by hotlinking their images to drain their small bandwidth allowance over their monthly limit. Over time the fake banks evolved and so have the Artists. On November 30, 2003, the Artists Against 419 hosted its first international "flash mob"^{see below}. There have been many subsequent mobbings designed to make hosters aware that the Artists Against 419 will not tolerate hosters knowingly hosting websites that AA419 deems criminal.

At the same time, they started to list the allegedly fraudulent sites that members had found, so that potential scam victims would see their website and be warned when looking for the sites to which the scammers direct them. This list now contains more than 27,000 websites (as of July 26, 2008), and is one of the world's largest databases of fraudulent websites.

Sophisticated tools are used to search for fake sites. Once a site is proved to be fake, it is entered into the database, and the hoster is contacted with the evidence and asked to close down the fraudulent site. Frequently, fake sites are closed within days of being set up. As great care is taken to check each site before it is listed, the AA419 website is increasingly used by law enforcement agencies as a source of information. Fact|date=February 2007 The UK Metropolitan Police force is reported to work with AA419. [cite web|title=Police maintain uneasy relations with cybervigilantes|publisher=CNET News.com|url=http://news.com.com/Police+maintain+uneasy+relations+with+cybervigilantes/2100-7348_3-6150817.html|accessdate=2007-03-25]

AA419 has good relations with many webhosting companies who themselves have no wish to host dishonest sites and cooperate willingly by closing down the fake sites once the evidence is presented. However, a few companies fail to respond to AA419's evidence, and in such circumstances they arrange a virtual sit-in.

Flash-mobbing

AA419 describes its action as "flash-mobbing" but in actuality, this activity is called a virtual sit-in. Virtual sit-ins entail large numbers of individuals intently visiting a target site and downloading pages or requesting large numbers of information, with the intent that their requests will cause a rapid drain of bandwidth, and if there is a bandwidth quota it goes offline. For example, if 100 people continuously download a 10 kilobyte image simultaneously for 12 hours, this uses 40 gigabytes of allocated bandwidth. Assuming that the fraudulent site has 40 Gb of allocated bandwidth per month, it will automatically shut down after 12 hours, when the bandwidth threshold is exceeded. The fraudulent website will then remain off-line until the following month, when the bandwidth quota is re-set. Virtual sit-ins are achieved using freeware tools such as Muguito or the Lad Vampire. Both tools are very easy to use and everyone is welcome to participate. A computer flash-mob is a similar case where the sites' sudden popularity brings an unexpected large numbers of visitors which the server is unable to handle, except that there is no actual audience and the action is designed to be destructive.

In some cases, particularly when a small web-hosting company is involved, the volume of traffic can be so large that access is slowed to all sites on the server, this holds the hoster at ransom until they pull the site, then things return to normal. It is important to note that no site is ever "mobbed" until at least two letters have been sent to the hosting company on two separate occasions:-

* informing them that they are hosting a fraudulent site
* detailing evidence of such fraudulent activities
* requesting that the site be shut down for violating the hoster's terms of business

The Artists much prefer that webhosters take responsibility for the actions of their clients as well as the content of their web sites. A virtual sit-in is a tool of last resort, used only after other attempts to shut down the fraudsters' website have failed. Fortunately, the vast majority of web-hosting companies find the activities of internet fraudsters highly objectionable and swiftly intervene to stop them.

The artists have had considerable success in closing these sites, since out of the 14,786 [cite web | url = http://db.aa419.org/fakebankslist.php| title = Artists Against 419 - Fake Bank Database | publisher = AA419 | accessdate = 2007-05-18] sites listed in their database, 876 [cite web | url = http://db.aa419.org/fakebankslist.php?x_Status=active| title = Artists Against 419 - Fake Bank Database | publisher = AA419 | accessdate = 2007-05-18] are still active and some of these will be very recent additions.

Controversy

What AA419 describes as "flash-mobbing", is considered by others to be an illegal electronic offensive called a Denial-of-service attack (DoS). By their own admission they affect "all sites on the server", and they have attacked systems without checking if bandwidth limits are in place.

Legal scholars like Susan Brenner, a law professor and expert on cybercrime at the University of Dayton School of Law, while sympathetic to aa419's aims and supportive of their more peaceable efforts, find these aggressive techniques akin to a DoS, which are illegal. Many jurisdictions prohibit anyone from sending a command to another computer with the intent of causing harm, and DoSes definitely aim to do damage.

Recent change in direction:

The following is from the AA419 web site, discussing the discontinuation of LadVampire and other software from their site:

: "As of September 14th 2007 the Artists Against 419 discontinued the use of Bandwidth Hogging tools"

: "As regular viewers will have noticed, the Artists discontinued the use of the Deadly Duo, Mugito and Lad Vampire on September 14, 2007."

: "As a community we have grown more sophisticated and effective in the art of shutting down fake web sites with words alone. Our database is the largest of its kind, and our expertise at identifying, cataloging, and terminating fraud sites is unmatched. We have shut down over 95% of the fakes in our database by letter-writing and establishing good relationships with hosts and domain registrars, and so we believe that it's time to move on."

: "We have listened to feedback from all sections of the internet, and realise that there is less need for these tools. With so many reputable hosting companies supporting the work of AA419, we no longer need the pressure tactics that worked in our infancy."

: "This is not to say that AA419 has lost its teeth. We remain committed to locating, and closing fakes web sites of all descriptions. We will continue to make known the names of web hosts and registrars that support fakes within their ranges, and we will bring our reputation, and our artists with us to every fight."

References

External links

* [http://wiki.aa419.org/ Artists Against 419 Website]
* [http://forum.aa419.org/ Artists Against 419 Forum]
* [http://db.aa419.org/ Artists Against 419 Scam Website Database]
* [http://muguito.aa419.org/ AA419: the Muguito anti-scam tool]
* [http://aa419.org/vampire/ladvampire.php AA419: the Lad Vampire]
* [http://www.legalaffairs.org/issues/March-April-2006/scene_Rosenblum_marapr06.msp Legal Affairs: the vigilante in the kitchen]