Over the weekend we marked the third anniversary of Climategate, which occurred on November 17th, 2009. A timeline of events can be read here.
Today marks the anniversary of my most famous story, the one written hastily on my laptop at Dulles airport, published just moments before the door to my flight home to California closed, leaving me with over 5 hours of sheer offline terror wondering “what have I started?”. For all I knew there would be police waiting at the airport for me in Sacramento.
That one story created a much needed firestorm, and I’m proud to have played a part in letting the world know just what sort of people we are dealing with.
Now, as we reported this summer: Climategate investigation closed – statute limit looms, cops impotent.
The Norfolk constabulary has called off the investigation saying:
Norfolk Constabulary has made the decision to formally close its investigation into the hacking of online data from the Climate Research Centre (CRU) at the University of East Anglia (UEA) in Norwich.
The decision follows a comprehensive investigation by the force’s Major Investigation Team, supported by a number of national specialist services, and is informed by a statutory deadline on criminal proceedings.
While no criminal proceedings will be instigated, the investigation has concluded that the data breach was the result of a ‘sophisticated and carefully orchestrated attack on the CRU’s data files, carried out remotely via the internet’.
Senior Investigating Officer, Detective Chief Superintendant Julian Gregory, said: “Despite detailed and comprehensive enquiries, supported by experts in this field, the complex nature of this investigation means that we do not have a realistic prospect of identifying the offender or offenders and launching criminal proceedings within the time constraints imposed by law.
“The international dimension of investigating the World Wide Web especially has proved extremely challenging.
“However, as a result of our enquiries, we can say that the data breach was the result of a sophisticated and carefully orchestrated attack on the CRU’s data files, carried out remotely via the internet. The offenders used methods common in unlawful internet activity to obstruct enquiries.
“There is no evidence to suggest that anyone working at or associated with the University of East Anglia was involved in the crime.”
The security breach was reported to Norfolk Constabulary on 20 November 2009, following publication of CRU data on the internet from 17 November onwards.
An investigation was launched by the joint Norfolk and Suffolk Major Investigation Team, led by Det Chief Supt Gregory, with some support from the The Met’s Counter Terrorism Command, the National Domestic Extremism Team and the Police Central e-crime Unit, along with consultants in online security and investigation.
The investigation, code-named Operation Cabin, focused on unauthorised access to computer material, an offence under the Computer Misuse Act 1990, which has a three year limit on proceedings from the commission of the original offence. It has been concluded by Norfolk Constabulary, in consultation with The Met, that due to outstanding enquiries this is now an unrealistic prospect.
Norfolk Assistant Chief Constable Charlie Hall, Protective Services lead, said: “Online crime is a global issue. While law enforcement agencies continue to develop our response to emerging threats, it falls upon individuals and organisations to be alert to this and and take steps to mitigate risk as far as is practicable.”
The “statutory deadline” referred to is three years, and that is now expired. With the statute of limitations now passed, and with no threat of criminal prosecution, will the person known as “FOIA” reveal him/herself? Or, will this be one of those long ongoing mysteries like the famous “deep throat” that went on for decades before finally being revealed?
Whether you choose to reveal yourself or not, we all owe you a debt of gratitude.