Freedom Hosting Admin Sentenced to 27 Years in Prison
U.S. District Judge Theodore D. Chuang sentenced Eric Eoin Marques, age 36, of Dublin, Ireland, to 27 years in prison followed by lifetime supervision. Marques, the creator of the darkweb hosting service Freedom Hosting, pleaded guilty to conspiracy to advertise child pornography.
Marques leaving a High Court in Dublin after an extradition hearing
Marques established Freedom Hosting in 2008 as a free hosting service for onion services. Before the Federal Bureau of Investigation’s seizure of the service in 2013, at least half of the onion services in operation used Freedom Hosting. Traditionally, in the United States, providers of electronic services are not directly responsible for user-created content. Freedom Hosting, publicly at least, pretended not to have any involvement in the operation or use of onion services created by Freedom Hosting users. In reality, Marques directly assisted certain services in their day-to-day operation. He specifically assisted services that facilitated the distribution of content depicting child abuse.
During the investigation, the FBI learned that Freedom Hosting provided hosting for more than 200 child exploitation sites. The sites contained millions of pictures and videos. Almost two million files involved victims that law enforcement had identified in previous investigations.
Freedom Hosting, publicly, seemed no different than other small hosting services.
Administrators of child abuse forums revealed Marques’ role in their operation.
On April 24, 2013, a user of Website A posted a message asking whether the anonymous hosting service (AHS) is free to the end-user. On April 25, 2013, the administrator of Website A responded that the AHS is “100% free” and that the administrator assumes that “the admin covers [the cost] himself as a·service to the [Network] pedo community.”
Website A, in this instance, is a reference to one of the largest child exploitation forums at the time. In a similar thread, users of the forum talked about Marques’ additional involvement:
On May 31, 2013, the administrator of Website A replied to a user that claimed, “[AHS] has NO control of the sites it hosts. It only hosts them.” The administrator responded, stating, “In reality [AHS] has full control over all the websites hosted on their servers. Just a few days ago they patched a few of the core files running this very forum.” Later in the same conversation, the administrator noted that, though AHS does not “create or maintain ( as far as I know) any of the sites they are hosting” AHS could “do whatever they wanted with the sites they host as they inherently have full access to the databases behind the sites.”
There are many interesting breakdowns of the malware available online as well as the potential impact of the FBI’s NIT deployment.