PayPal, Google ordered to make suspected pirates walk the plank into freezing waters

Follow the money: Florida judge signs off on new IP attack


PayPal and Google have been hit with court injunctions telling them to freeze accounts associated with websites hosting pirated content.

Florida judge Kevin Michael Moore signed off [PDF] on the injunctions, believed to be the first time that a copyright holder has managed to get at the finances of a website operator.

The company is question – Philippine media giant ABS-CBN – took a novel route to finding out which PayPal and Google Ads accounts were connected to the websites: it subpoenaed internet security company CloudFlare.

The nearly 50 websites listed in the legal complaint [PDF] use CloudFlare's services, and CloudFlare handed over the email addresses associated with each. ABS-CBN then tracked those email addresses – most of which were from Gmail – back to the companies the pirates were used to run ads and take money (mostly Google Ads and PayPal).

Around 30 of the 50 sites used the same email address given to CloudFlare to also run their ads and payment accounts – prompting ABS-CBN to ask the judge to freeze them while its court case continued – and the judge approved.

It is an interesting and novel "follow the money" approach and one that ABS-CBN appears to be pioneering after similar successful efforts to seize domain names and ad revenue. In each case, the Philippine company has found a supportive legal system in Florida.

It probably helps that there is a precision in this case that is often missing in broader copyright-infringement cases: ABS-CBN is focused on so-called "pinoy" content, which refers to specifically Philippine content. It is relatively niche – something is reflected in the fact that most of the domain names in question contain the term "pinoy." Examples: pinoytambaylive.com, pinoyako.su, pinoybay.se, pinoy-channel.net, pinoytvshows.mobi, pinoytvs.com, and so on.

Precedent?

But while it is a relatively small victory in terms of the size and number of pirate sites, it could set a significant legal precedent that other, larger media companies then use to go after larger online pirates.

The judgement imposes temporary restraining orders on the websites and the associated ad and payment accounts, so it is possible that the orders will be subsequently lifted (although, let's be honest, that's unlikely). And, of course, anyone running a pirate site will now simply use a different email address for their different accounts, cutting the connection between them.

But the approach will make it harder to profit from copyrighted content by requiring greater effort and attention to detail. The order reveals that the same individuals are behind multiple different websites, suggesting that there is a cookie-cutter approach to pirate content websites where the same approach is used repeatedly for different sites.

There is a risk however that the order is so broad that it forces the companies subject to the injunctions to take a closer look at the legal approach. One part reads:

Upon receipt of notice of this Order, the advertising services, networks and/or platforms identified on Schedule B hereto (the “Advertising Services”), and all financial institutions, payment processors, banks, escrow services, and/or money transmitters, including but not limited to PayPal, Inc. (“PayPal”), and their related companies and affiliates, shall immediately identify and restrain all funds, as opposed to ongoing account activity, in the advertising or PayPal accounts related to Defendants, and their associated payment accounts and e-mail addresses.

Too broad?

That is a large net and such an approach may not work beyond niche content websites. If PayPal and/or Google decide at some point to involve themselves in a case, the approach could quickly unravel.

All the same it is a sign that the legal system is slowly bending to pressure from copyright holders intensely frustrated at the game of whack-a-mole they are forced to play every day to pull down their content.

Google receives literally millions of requests every day to pull links to infringing material. But if pirates risking losing any money that they make from their efforts, it will add a new barrier. Because, let's be honest, they're doing it just for the love of sharing content.

Cough up

It seems that PayPal's automated efforts have got into trouble a second time. The online payment company sent a letter to a customer who had died recently from cancer, demanding outstanding payment: "You are in breach of condition 15.4(c) of your agreement with PayPal Credit as we have received notice that you are deceased... this breach is not capable of remedy."

Her widower, who sent the company a ream of documentation that it has insisted upon to prove she had passed, was suitably unimpressed and went public, promoting PayPal to recognize that demanding money from dead people was "insensitive." ®

Similar topics

Broader topics


Other stories you might like

  • End of the road for biz living off free G Suite legacy edition
    Firms accustomed to freebies miffed that web giant's largess doesn't last

    After offering free G Suite apps for more than a decade, Google next week plans to discontinue its legacy service – which hasn't been offered to new customers since 2012 – and force business users to transition to a paid subscription for the service's successor, Google Workspace.

    "For businesses, the G Suite legacy free edition will no longer be available after June 27, 2022," Google explains in its support document. "Your account will be automatically transitioned to a paid Google Workspace subscription where we continue to deliver new capabilities to help businesses transform the way they work."

    Small business owners who have relied on the G Suite legacy free edition aren't thrilled that they will have to pay for Workspace or migrate to a rival like Microsoft, which happens to be actively encouraging defectors. As noted by The New York Times on Monday, the approaching deadline has elicited complaints from small firms that bet on Google's cloud productivity apps in the 2006-2012 period and have enjoyed the lack of billing since then.

    Continue reading
  • I was fired for blowing the whistle on cult's status in Google unit, says contractor
    The internet giant, a doomsday religious sect, and a lawsuit in Silicon Valley

    A former Google video producer has sued the internet giant alleging he was unfairly fired for blowing the whistle on a religious sect that had all but taken over his business unit. 

    The lawsuit demands a jury trial and financial restitution for "religious discrimination, wrongful termination, retaliation and related causes of action." It alleges Peter Lubbers, director of the Google Developer Studio (GDS) film group in which 34-year-old plaintiff Kevin Lloyd worked, is not only a member of The Fellowship of Friends, the exec was influential in growing the studio into a team that, in essence, funneled money back to the fellowship.

    In his complaint [PDF], filed in a California Superior Court in Silicon Valley, Lloyd lays down a case that he was fired for expressing concerns over the fellowship's influence at Google, specifically in the GDS. When these concerns were reported to a manager, Lloyd was told to drop the issue or risk losing his job, it is claimed. 

    Continue reading
  • Google battles bots, puts Workspace admins on alert
    No security alert fatigue here

    Google has added API security tools and Workspace (formerly G-Suite) admin alerts about potentially risky configuration changes such as super admin passwords resets.

    The API capabilities – aptly named "Advanced API Security" – are built on top of Apigee, the API management platform that the web giant bought for $625 million six years ago.

    As API data makes up an increasing amount of internet traffic – Cloudflare says more than 50 percent of all of the traffic it processes is API based, and it's growing twice as fast as traditional web traffic – API security becomes more important to enterprises. Malicious actors can use API calls to bypass network security measures and connect directly to backend systems or launch DDoS attacks.

    Continue reading
  • FTC urged to probe Apple, Google for enabling ‘intense system of surveillance’
    Ad tracking poses a privacy and security risk in post-Roe America, lawmakers warn

    Democrat lawmakers want the FTC to investigate Apple and Google's online ad trackers, which they say amount to unfair and deceptive business practices and pose a privacy and security risk to people using the tech giants' mobile devices.

    US Senators Ron Wyden (D-OR), Elizabeth Warren (D-MA), and Cory Booker (D-NJ) and House Representative Sara Jacobs (D-CA) requested on Friday that the watchdog launch a probe into Apple and Google, hours before the US Supreme Court overturned Roe v. Wade, clearing the way for individual states to ban access to abortions. 

    In the days leading up to the court's action, some of these same lawmakers had also introduced data privacy bills, including a proposal that would make it illegal for data brokers to sell sensitive location and health information of individuals' medical treatment.

    Continue reading
  • Google: How we tackled this iPhone, Android spyware
    Watching people's every move and collecting their info – not on our watch, says web ads giant

    Spyware developed by Italian firm RCS Labs was used to target cellphones in Italy and Kazakhstan — in some cases with an assist from the victims' cellular network providers, according to Google's Threat Analysis Group (TAG).

    RCS Labs customers include law-enforcement agencies worldwide, according to the vendor's website. It's one of more than 30 outfits Google researchers are tracking that sell exploits or surveillance capabilities to government-backed groups. And we're told this particular spyware runs on both iOS and Android phones.

    We understand this particular campaign of espionage involving RCS's spyware was documented last week by Lookout, which dubbed the toolkit "Hermit." We're told it is potentially capable of spying on the victims' chat apps, camera and microphone, contacts book and calendars, browser, and clipboard, and beam that info back to base. It's said that Italian authorities have used this tool in tackling corruption cases, and the Kazakh government has had its hands on it, too.

    Continue reading
  • Google recasts Anthos with hitch to AWS Outposts
    If at first you don't succeed, change names and try again

    Google Cloud's Anthos on-prem platform is getting a new home under the search giant’s recently announced Google Distributed Cloud (GDC) portfolio, where it will live on as a software-based competitor to AWS Outposts and Microsoft Azure Stack.

    Introduced last fall, GDC enables customers to deploy managed servers and software in private datacenters and at communication service provider or on the edge.

    Its latest update sees Google reposition Anthos on-prem, introduced back in 2020, as the bring-your-own-server edition of GDC. Using the service, customers can extend Google Cloud-style management and services to applications running on-prem.

    Continue reading
  • Brave Search leaves beta, offers Goggles for filtering, personalizing results
    Freedom or echo chamber?

    Brave Software, maker of a privacy-oriented browser, on Wednesday said its surging search service has exited beta testing while its Goggles search personalization system has entered beta testing.

    Brave Search, which debuted a year ago, has received 2.5 billion search queries since then, apparently, and based on current monthly totals is expected to handle twice as many over the next year. The search service is available in the Brave browser and in other browsers by visiting search.brave.com.

    "Since launching one year ago, Brave Search has prioritized independence and innovation in order to give users the privacy they deserve," wrote Josep Pujol, chief of search at Brave. "The web is changing, and our incredible growth shows that there is demand for a new player that puts users first."

    Continue reading

Biting the hand that feeds IT © 1998–2022