How vulnerable are computers/devices when connected to tor? Any more than when they're not? Just curious.


Comments


[6 Points] ShulginsCat:

Short answer is you are slightly more at risk when on tor, because there are 3 untrusted machines between you and the target website and at least one can see your traffic in the clear.


[2 Points] None:

That's a great question! I am going to try and list the ways it could and could not be more vulnerable. For starters, by connecting the The itself you are connecting to an exit node. This exit node may be compromised in some way and it has been rumoured that theoretically, LE could be running a few weeks did nodes. They would be able to watch the traffic if this is the case.

Seconds you open your computer to a range of threats on the deep web. The deep web contains thousands of viruses and sketchy links and you open up your computer to that if you go crawling.

By just connecting to the markets the only danger I could see is a compromised exit node. The dangers that are on the clear net such as phishing also take place and happen all the time while using TOR.

I am sure there are more threats out there, OPSEC will save you. Check your URL's before you enter your login details would be a good place to start.


[1 Points] sruvolo:

Appreciate the feedback given in this thread thus far. I only ever go to known urls/markets -- never any free roaming or searching. Also, I have an old Android tablet that I use almost exclusively for these activities. My home pc/laptops have never touched the deep web and never will. It's great that Android has apps that cover the full array of functions needed to participate in these markets. The experience isn't as fluid as it would be using a mouse and keyboard, but the piece of mind is great. That said, I DO have chrome on that tablet, logged in with my real google ID, and the other day the tablet felt sluggish and I realized that orbot had been running all day. I panicked and worried that my chrome (and all the stored passwords, etc) might have been exposed. Needless to say I'll be keeping a closer eye on my more sensitive accounts (and I logged out of chrome on the device).