- How to get The Sims 4 for free Wednesday 7:45 PM
- Trump’s Rose Garden podium sign is the perfect meme canvas Wednesday 7:34 PM
- Forest Whitaker to produce adaptation of novel ‘Hello, Universe’ for Netflix Wednesday 6:58 PM
- Baltimore still refuses to pay hackers who hit city with ransomware Wednesday 5:34 PM
- Net neutrality advocates slam ‘extremely troubling’ letter circulating among some House Dems Wednesday 4:52 PM
- Moms and grandmas are infiltrating TikTok Wednesday 4:35 PM
- Did Britain’s head Brexiter hide in a bus to avoid getting hit by a milkshake? Wednesday 4:26 PM
- This woman who thought she saw a handmaid about to jump from a building is very relieved Wednesday 4:18 PM
- Michael Avenatti allegedly defrauded Stormy Daniels to pay for a Ferrari Wednesday 3:53 PM
- HBO has no plans for an Arya Stark spinoff series Wednesday 3:28 PM
- Republicans and Democrats agree on dangers of facial recognition tech Wednesday 3:18 PM
- Amazon is using video games and ‘swag bucks’ to incentivize workers Wednesday 3:04 PM
- Here’s what’s coming and going on Netflix in June Wednesday 2:46 PM
- This Michael Jackson makeup meme is sweeping TikTok Wednesday 2:45 PM
- Homophobic preacher wants Pete Buttigieg to renounce fisting and rimming Wednesday 2:33 PM
Top Dark Net black market pauses operations due to Tor vulnerability
New research shows it may be easier than expected to deanonymize users.
Normally an island of stability in a sea of chaos, Agora handles millions of dollars per year for its top vendor, a huge chunk of the Dark Net drug trade. As such, its pause is a major seismic shift for black markets on the Dark Net.
The attack cited by Agora’s owners reportedly allows adversaries to learn which hidden websites a Tor user visits, as well as the websites’ locations, with up to 88 percent accuracy.
The new research showed that the amount of resources required to deanonymize a hidden service like Agora was “much lower than expected,” Agora’s owners explained, “and in our case we do believe we have interested parties who possess such resources.”
Tor co-creator Roger Dingledine called the research “well-written” last month but stressed that this sort of research has “historically overestimated the risks for users.”
A solution at Agora is in the works, but it will take time to implement “big changes to our software stack, which we believe will mitigate such problems,” Agora’s owners wrote. “Additionally, we have recently been discovering suspicious activity around our servers, which led us to believe that some of the attacks described in the research could be going on, and we decided to move servers once again, however this is only a temporary solution.”
I wouldn’t trust a Tor hidden service farther than I could throw the server. Not in 2015.
— Matthew Green (@matthew_d_green) August 25, 2015
You can read the research below.
As of a May 2015 census, the drug-focused market accounted for 37 percent of all Dark Net product listings. It sold especially high volumes of marijuana, ecstasy, prescription drugs, and stimulants.
Agora has been operating since late 2013 after the original Silk Road was seized by the FBI. Although it immediately found some success, the market ballooned in size over the last year as a result of other markets falling to police action and theft.
Agora’s handling of the pause stands in stark contrast to other Dark Net markets that have shut down only to steal their customers’ money and run when faced with similar threats.
Agora’s lifespan has been marked by several pauses in the name of security, most of which were handled with a high level of professionalism rarely seen on the Dark Net.
Patrick Howell O'Neill is a notable cybersecurity reporter whose work has focused on the dark net, national security, and law enforcement. A former senior writer at the Daily Dot, O'Neill joined CyberScoop in October 2016. I am a cybersecurity journalist at CyberScoop. I cover the security industry, national security and law enforcement.