- Genius turns Kylie Jenner’s ‘rise and shine’ meme into alarm ringtone 4 Years Ago
- In ‘Tell Me Who I Am,’ twin brothers grapple with hidden trauma 4 Years Ago
- Panama Papers law firm sues Netflix over ‘The Laundromat’ Today 3:07 PM
- ‘Motherless Brooklyn’ is a gorgeous noir with little below the surface Today 1:14 PM
- Jameela Jamil and Sara Sampaio got in a Twitter feud over ‘long-starved’ models Today 12:52 PM
- Freddie Prinze Jr. will straight-up school you about the Force don’t @ him Today 12:18 PM
- Woman hosts Instagram funeral after she ‘killed’ $102K in student debt Today 11:45 AM
- YouTube beats Netflix as go-to streaming platform for teens Today 11:41 AM
- The tallest man in America posts emotional YouTube video from hospital room Today 11:31 AM
- Nintendo Switch subreddit implodes amid Hong Kong protests Today 11:14 AM
- Biden yelling at Warren becomes relatable workplace meme Today 10:33 AM
- Tulsi Gabbard was conservatives’ favorite debater Today 10:07 AM
- ‘Rogue One’ co-writer to direct several episodes, write the pilot for Cassian Andor series Today 9:50 AM
- ‘The Two Popes’: Anthony Hopkins and Jonathan Pryce shine in Netflix’s pope comedy Today 8:57 AM
- AOC, ‘Squad’ to endorse Bernie Sanders Today 8:44 AM
Top Dark Net black market pauses operations due to Tor vulnerability
New research shows it may be easier than expected to deanonymize users.
Normally an island of stability in a sea of chaos, Agora handles millions of dollars per year for its top vendor, a huge chunk of the Dark Net drug trade. As such, its pause is a major seismic shift for black markets on the Dark Net.
The attack cited by Agora’s owners reportedly allows adversaries to learn which hidden websites a Tor user visits, as well as the websites’ locations, with up to 88 percent accuracy.
The new research showed that the amount of resources required to deanonymize a hidden service like Agora was “much lower than expected,” Agora’s owners explained, “and in our case we do believe we have interested parties who possess such resources.”
Tor co-creator Roger Dingledine called the research “well-written” last month but stressed that this sort of research has “historically overestimated the risks for users.”
A solution at Agora is in the works, but it will take time to implement “big changes to our software stack, which we believe will mitigate such problems,” Agora’s owners wrote. “Additionally, we have recently been discovering suspicious activity around our servers, which led us to believe that some of the attacks described in the research could be going on, and we decided to move servers once again, however this is only a temporary solution.”
I wouldn’t trust a Tor hidden service farther than I could throw the server. Not in 2015.
— Matthew Green (@matthew_d_green) August 25, 2015
You can read the research below.
As of a May 2015 census, the drug-focused market accounted for 37 percent of all Dark Net product listings. It sold especially high volumes of marijuana, ecstasy, prescription drugs, and stimulants.
Agora has been operating since late 2013 after the original Silk Road was seized by the FBI. Although it immediately found some success, the market ballooned in size over the last year as a result of other markets falling to police action and theft.
Agora’s handling of the pause stands in stark contrast to other Dark Net markets that have shut down only to steal their customers’ money and run when faced with similar threats.
Agora’s lifespan has been marked by several pauses in the name of security, most of which were handled with a high level of professionalism rarely seen on the Dark Net.
Patrick Howell O'Neill is a notable cybersecurity reporter whose work has focused on the dark net, national security, and law enforcement. A former senior writer at the Daily Dot, O'Neill joined CyberScoop in October 2016. I am a cybersecurity journalist at CyberScoop. I cover the security industry, national security and law enforcement.