FWIW: Assuming LE was able to compromise the top 3 markets, the optimal strategy for rolling up as many people as possible looks like this:

  1. Take down the least throughly compromisable and wait a few days.

  2. Take down the second most compromisable, have a press conference and say the op is done.

  3. Wait as long as is politically defensible, then take down the most compromisable.

1 & 2 already presumably happened.

I don't know the setups of any of these sites, but God Mode in terms of compromise would be breaking GPG for buyer to seller communication.

The only feisable way of doing this is serving fake vendor public keys to users or otherwise bypassing GPG encryption.

If the site offers to encrypt clear text messages for users, then they would just grab clear text first.

If the site displays the vendors public key, they could replace those with poisoned duplicates, decrypt and grab cleartext, then reencrypt with proper key and send to vender.

This would get noticed if done all at once or persistently, but if you set it up so poisoned keys are only shown to some users under some circumstances (like after a particular user has viewed the store, not viewed the public key page previously, etc), then you could probably manage to nab a lot of clear text before it got noticed.

And when a user caught it, and if they report it, no one else would be able to verify such claims by simply checking themselves.

And even after all that, most people would probably assume this was due to individual vender compromise, not a systematic, selective man in the middle attack.

The effectiveness of this attack could be further optimized by monitoring the few outlets available to discuss such topics and prevent tampering with the keys of any vender implicated there.

The only safeguard against this attack is checking the provided public key against a pubic keypool server and inspecting the date of creation, and making sure it wasn't backdated as well. I highly doubt even the most hardcore opsec buyers go to such lengths every time, if at all.


Comments


[6 Points] nic69-96:

they say hanse had been compromised since june 20th... so does that mean they've been honey potting the shit out of everyone? My friend literally just placed an order 3 days ago, what do you think the chances are of a CD? it was less then 300$ in value...


[1 Points] fakeshelby:

What's GPG? Never heard of it


[2 Points] BananasAndBlowMe:

I recall AB and Hansa being compromised?

What is the third market?


[1 Points] redditthentoss:

It seems like you don't know how any of this works. I don't mean to be a dick, you just have a few misunderstandings.

First, you can spoof the creation date of a pgp key. Second, breaking PGP is an inevitability and is why the allowed storage on intelligence gathering is indefinite if it's encrypted. Third, there are more absolute means at which you can be identified—correlation attacks should be a serious concern for vendors moving forward.


[1 Points] honestone82:

LE blew their load if they could arrest everyone they would have done it how ya gonna give everyone a heads up that they git this and that..They got shit.. Some govt nerds figured out a way to take down hansa and Cazes doxxed himself like a shit head..


[1 Points] UndeadMarine55:

Yeah this really shouldn't be flaired as just speculation. It'd be nice if it was discussion.

I understand Mod God is pragmatically trying to make sure the community here doesn't die out due to fear. Maybe, however, fear is what's needed at this point.

Should all ye roleplayers never come back to DNMs? No. But should some smart people here really start looking at DNM sites and figure out if shits legit, oh yes.

You fuckwads got honeypotted for a whole month, and over 3 mil in bitcoin got seized. Should be a wakeupcall.

To be honest Im only here to observe, mildly troll, and somewhat constructively criticize. However, I keep seeing mod approved people talking about how safe everything is... and yes with sloppy opsec.

Simply ordering to ones house is sloppy as fuck opsec. This sub with people constantly posting did I fuck up and giving specific case information is sloppy fucking OPSEC.

Personally I do not do drugs (thank god for my sanity at this point), but if I did, I guarantee my OPSEC would be 10k x better than the people this sub fucking endorses with their fucking flairs.

LEO is god... how do you hide from god? That's for you to figure out.