As noted in another post from /u/InsanityDRM, he found out that Olympus Market was using a favicon hosted on a clearnet site. Putting two and two together, their server time is in Germany, and this site is hosted on a German server, with a German IP address.
After doing some more simple digging, I was able to come up with their IP: 62.***** Naturally its down now but this is most likely Olympus' market server cluster/network. This IP is hosted at 23media dot de, which is in Germany. Same info as InsanityDRM posted. Doesn't look good for these "InfoSec" specialists who use a simple favicon pointed at a clearnet domain. If they can't have 2 seconds to move a favicon to the web server of the market, then they don't have enough time to secure your funds.
Couldn't the favicon just be hot linked from a completely unrelated website?