- New Zealand arrests 2 for sharing video of mosque shooting 4 Years Ago
- ‘Queer Eye’ season 3 serves more frothy fun and cathartic realness Today 4:30 PM
- Everyone is roasting this photo of Kourtney Kardashian in a bubble bath Today 4:15 PM
- White House report has a lot of superheroes listed as interns Today 4:06 PM
- Google to launch ‘Stadia’ cloud gaming service this year Today 3:55 PM
- Amy Schumer addresses her ‘Growing’ pains in new Netflix special Today 2:04 PM
- This Bitcoin tie is everyone’s favorite part of the Theranos documentary Today 1:56 PM
- Trump’s social media guru gets suspended on Facebook Today 1:51 PM
- YouTube time traveler says he saw a dinosaur—in the future Today 1:47 PM
- Why is Netflix changing the viewing order for ‘Love, Death & Robots’? Today 12:47 PM
- Elizabeth Holmes’ deep voice captivates and confuses the internet Today 12:40 PM
- These cat purses have everything you need (including balls) Today 12:22 PM
- Smooth dude gets girl’s number with a ‘choose your own adventure’ RPG on Tinder Today 12:20 PM
- Beto O’Rourke reportedly pranked his wife with a ‘verdant turd’ Today 12:13 PM
- The Disney-Fox deal is finalized Today 12:08 PM
Top Dark Net black market pauses operations due to Tor vulnerability
New research shows it may be easier than expected to deanonymize users.
Normally an island of stability in a sea of chaos, Agora handles millions of dollars per year for its top vendor, a huge chunk of the Dark Net drug trade. As such, its pause is a major seismic shift for black markets on the Dark Net.
The attack cited by Agora’s owners reportedly allows adversaries to learn which hidden websites a Tor user visits, as well as the websites’ locations, with up to 88 percent accuracy.
The new research showed that the amount of resources required to deanonymize a hidden service like Agora was “much lower than expected,” Agora’s owners explained, “and in our case we do believe we have interested parties who possess such resources.”
Tor co-creator Roger Dingledine called the research “well-written” last month but stressed that this sort of research has “historically overestimated the risks for users.”
A solution at Agora is in the works, but it will take time to implement “big changes to our software stack, which we believe will mitigate such problems,” Agora’s owners wrote. “Additionally, we have recently been discovering suspicious activity around our servers, which led us to believe that some of the attacks described in the research could be going on, and we decided to move servers once again, however this is only a temporary solution.”
I wouldn’t trust a Tor hidden service farther than I could throw the server. Not in 2015.
— Matthew Green (@matthew_d_green) August 25, 2015
You can read the research below.
As of a May 2015 census, the drug-focused market accounted for 37 percent of all Dark Net product listings. It sold especially high volumes of marijuana, ecstasy, prescription drugs, and stimulants.
Agora has been operating since late 2013 after the original Silk Road was seized by the FBI. Although it immediately found some success, the market ballooned in size over the last year as a result of other markets falling to police action and theft.
Agora’s handling of the pause stands in stark contrast to other Dark Net markets that have shut down only to steal their customers’ money and run when faced with similar threats.
Agora’s lifespan has been marked by several pauses in the name of security, most of which were handled with a high level of professionalism rarely seen on the Dark Net.
Patrick Howell O'Neill is a notable cybersecurity reporter whose work has focused on the dark net, national security, and law enforcement. A former senior writer at the Daily Dot, O'Neill joined CyberScoop in October 2016. I am a cybersecurity journalist at CyberScoop. I cover the security industry, national security and law enforcement.