|
sonamdrukpa
Wayfarer


Registered: 10/18/11
Posts: 2,777
Last seen: 3 months, 1 day
|
Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium
#18990743 - 10/17/13 12:34 PM (10 years, 4 months ago) |
|
|
slate.com
By Justin Peters
It’s been a bad month for people who like to buy illegal drugs online. Just a few weeks after the illicit marketplace Silk Road got shut down by the feds, one of that site’s main Dark Web competitors is closing down as well. The proprietor of Black Market Reloaded—which Bitcoin Magazine has described as a Silk Road for “people with no moral restrictions at all”—announced Thursday that he was shutting the site. The reason: He’d made a sloppy decision that may have compromised his real-world identity—which is pretty much exactly what the FBI says happened to Ross William Ulbricht, the guy who allegedly ran Silk Road.
Here’s what seems to have happened. As you might imagine, Black Market Reloaded was deluged with new users in the wake of the Silk Road seizure, and the site’s owner, “backopy,” apparently had to acquire new servers to keep the site up and running under this increased demand. In a forum post published today under the title “The end of the road,” backopy wrote that he decided to use a virtual private server, or VPS, in order to meet demand. While you can get a VPS up and running faster than a dedicated physical server, the VPS will be less secure, in part because it is not wholly controlled by the site owner. Sure enough, as backopy wrote, the VPS administrator allegedly leaked the Black Market Reloaded source code. From that code, a careful investigator could have theoretically determined backopy’s identity, and possibly more. With the site compromised, backopy apparently decided to shut it down.
As a frequent evaluator of dumbness, I feel confident in my assessment that this was even dumber than the mistakes that allegedly sank Silk Road. Ross William Ulbricht’s alleged slip-ups came in the site’s early days, before Silk Road became a billion-dollar business. They were novice mistakes made by a novice manager. But Black Market Reloaded has been around awhile, and the site’s administrator should have known the risks of using a VPS. In this case, he actively chose to ignore safety in favor of expedience.
Sites like these promise safety in anonymity—that it’s a security feature when nobody really knows who they’re dealing with. But, as we’re learning, “you don’t know who you’re dealing with” can also be a huge negative when you don’t really know whether that person is taking the appropriate security precautions. And I guess you could argue that total security is always an illusion in cases like these—that as a site scales in size and popularity, it becomes harder to manage, and leads to more opportunities for a breach. Creating a digital trail is always fraught, no matter how well that trail is supposedly concealed or encrypted. That, to me, seems more convincing than the idea that these sites could’ve gone on forever if the creators weren’t big dummies.
Anyway, there are still several Dark Web marketplaces out there, and backopy himself has already promised that he will "come back in the future" with a new, safer version of the site. (Hooray?) I’m eager to see whether he and the other remaining proprietors have learned any lessons from Silk Road and Black Market Reloaded, or whether they, too, will fall in the wake of some digital blunder.
--------------------
|
Repertoire89
Cat



Registered: 11/15/12
Posts: 21,773
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: sonamdrukpa]
#18990754 - 10/17/13 12:37 PM (10 years, 4 months ago) |
|
|
|
PsYcHoDoUgHbOy
Connoisseur



Registered: 08/11/08
Posts: 1,481
Last seen: 2 years, 11 months
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: Repertoire89] 1
#18990828 - 10/17/13 12:52 PM (10 years, 4 months ago) |
|
|
At least he shut it down before the feds.
|
ChinChiller



Registered: 07/03/10
Posts: 3,270
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: Repertoire89] 1
#18990830 - 10/17/13 12:53 PM (10 years, 4 months ago) |
|
|
Someone will come along and learn from everyone elses mistakes and make some of their own, but someone else will always come along and pick up the slack...
|
Deemstar
Doctor Deemstar



Registered: 10/11/12
Posts: 883
Loc: The void
Last seen: 24 days, 3 minutes
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: ChinChiller]
#18990889 - 10/17/13 01:02 PM (10 years, 4 months ago) |
|
|
Bummer, does anyone know if silkroad 2.0 is gunna come out or is that a rumor?
-------------------- Gnome-miii-odd JAH!!! Pasta-far-eye! R.I.P. Georgie poor G A.K.A. Jorgon Lucy
|
ChinChiller



Registered: 07/03/10
Posts: 3,270
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: Deemstar]
#18990899 - 10/17/13 01:04 PM (10 years, 4 months ago) |
|
|
There are more sites out there. Just use google and you will find them. I'm not sure about Silkroad 2.0, but one thing you can be sure of is DPR wont be running it
|
Smushroom
Avid Learner

Registered: 02/02/05
Posts: 2,806
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: ChinChiller]
#18991005 - 10/17/13 01:37 PM (10 years, 4 months ago) |
|
|
Quote:
Errolscool said: There are more sites out there. Just use google and you will find them. I'm not sure about Silkroad 2.0, but one thing you can be sure of is DPR wont be running it 
You never know. Some prisons have internet access.
|
ChinChiller



Registered: 07/03/10
Posts: 3,270
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: Smushroom]
#18991028 - 10/17/13 01:45 PM (10 years, 4 months ago) |
|
|
What if there was a vendor that sent blotters exclusively into prisons, hidden in the stamp or within the letter? Do all regular prisoners have internet access?
|
SnowDaze
Probably Relapsing on Heroin


Registered: 02/24/13
Posts: 5,996
Loc: Home, Home Again....
Last seen: 6 months, 5 days
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: ChinChiller]
#18991061 - 10/17/13 01:54 PM (10 years, 4 months ago) |
|
|
damn this was the 2nd best one... good thing i dont need use those anymore now that im clean from most things
--------------------
If you get confused, listen to the music play
|
NWlight
Just look


Registered: 01/12/10
Posts: 18,686
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: ChinChiller] 1
#18991066 - 10/17/13 01:55 PM (10 years, 4 months ago) |
|
|
the more sites that shut down the more people will learn from their mistakes
--------------------

|
LysergicX7
Lunatic



Registered: 11/11/12
Posts: 1,206
Loc: Montana, USA
Last seen: 2 months, 10 days
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: NWlight]
#18991076 - 10/17/13 01:57 PM (10 years, 4 months ago) |
|
|
Sheep is still avalible I think.
-------------------- “Everybody is fundamentally, the ultimate reality. Not god in the political kingly sense, but god in the sense of being the self – the deep down basic whatever there is. And you’re all that… only you’re pretending you’re not.” -Alan Watts I think that in human evolution it has never been as necessary to have this substance LSD. It is just a tool to turn us into what we are supposed to be.” ― Albert Hofmann
|
Grogan
Shroomieologist



Registered: 05/20/03
Posts: 1,146
Last seen: 8 years, 9 months
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: LysergicX7] 1
#18991154 - 10/17/13 02:14 PM (10 years, 4 months ago) |
|
|
at least he was smart enough to shut it down before it was to late.. good job !!! I surmise he will reopen another in a more shadowy manner...
-------------------- "Maybe a cow occasionally ate a shroom, but it certainly wouldn't be such a potent shroom that the cow would be trippin balls. " LOL
|
lessismore
Registered: 02/10/13
Posts: 6,268
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: Grogan]
#18991654 - 10/17/13 04:02 PM (10 years, 4 months ago) |
|
|
Anonymity on the internet is almost an illusion, if you want to host servers
if you don't want to host it is easier, but still very hard
much easier to buy in cash, but hard to find LSD these days that is strong
|
downlowfunk
Retired Festival Veteran



Registered: 09/25/04
Posts: 880
Loc: Physical Realm
Last seen: 3 years, 5 months
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: lessismore]
#18991663 - 10/17/13 04:05 PM (10 years, 4 months ago) |
|
|
I just want to say this article isnt exacly accurate. Id say the Author is someone who cheated their way through school copying off others, and still only getting a C.
|
T-Rex




Registered: 04/05/08
Posts: 4,185
Loc: NY
Last seen: 1 month, 2 days
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: downlowfunk]
#18991684 - 10/17/13 04:12 PM (10 years, 4 months ago) |
|
|
This will be a never ending cycle. Two down and ten more to take their places.
|
freeworld
Stranger
Registered: 06/04/13
Posts: 58
Last seen: 8 years, 8 months
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: T-Rex]
#18992340 - 10/17/13 06:50 PM (10 years, 4 months ago) |
|
|
Vendors and buyers bitcoins are in the process of being refunded... no BS...
Admin is sitting on millions of dollars and instead of bouncing like any other low life dealer on the streets would have done; he is giving people their money back. The kicker is very few actually who know his identity... How the fuck these sites are illegal blows my mind...
Edited by freeworld (10/17/13 06:51 PM)
|
Smushroom
Avid Learner

Registered: 02/02/05
Posts: 2,806
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: ChinChiller]
#18992945 - 10/17/13 08:36 PM (10 years, 4 months ago) |
|
|
Quote:
Errolscool said: What if there was a vendor that sent blotters exclusively into prisons, hidden in the stamp or within the letter? Do all regular prisoners have internet access? 
Most if not all prisons remove stamps from incoming mail for this reason (not just acid but also other items that can be layed on paper).
Very few prisons grant internet access. Some of the rich people fed prisons may allow recreational access but for the most part the only ones I know that allow access are private prisons that contract out call center work. There was an issue a few years ago where a convicted identity theif was allowed to take phone in catalog orders for some company and he stole more money from their CCs
|
c1dh3d
The elephant is BACK




Registered: 07/15/08
Posts: 5,229
Loc:
Last seen: 8 months, 12 days
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: freeworld]
#18993955 - 10/18/13 02:04 AM (10 years, 4 months ago) |
|
|
Quote:
freeworld said: Vendors and buyers bitcoins are in the process of being refunded... no BS...
Admin is sitting on millions of dollars and instead of bouncing like any other low life dealer on the streets would have done; he is giving people their money back. The kicker is very few actually who know his identity... How the fuck these sites are illegal blows my mind...
This. Times a million.
|
screamphilling
Stranger


Registered: 05/30/08
Posts: 212
Last seen: 3 years, 3 months
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: Smushroom]
#18993989 - 10/18/13 02:40 AM (10 years, 4 months ago) |
|
|
edit: bmr is back running on a different address. He claims he's confident there was no security compromise and is allowing users to log back on to retrieve their btc. Possibly continuing current iteration of bmr
Edited by screamphilling (10/18/13 02:58 AM)
|
Repertoire89
Cat



Registered: 11/15/12
Posts: 21,773
|
Re: Another Sloppy Security Blunder Takes Down Another Dark Web Drug Emporium [Re: screamphilling]
#18994195 - 10/18/13 05:42 AM (10 years, 4 months ago) |
|
|
Quote:
screamphilling said: edit: bmr is back running on a different address. He claims he's confident there was no security compromise and is allowing users to log back on to retrieve their btc. Possibly continuing current iteration of bmr
|
|