-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 07/14/2016 12:23 AM, Jon Tullett wrote: > On 14 July 2016 at 01:51, Nick Levinson <nick_levin...@yahoo.com> > wrote: >> The FBI reportedly cracked Tor's security to crack a child porn >> case with over 100 arrests of Tor users. > > I think what you'll find in such cases is that the FBI generally > crack the servers hosting the illicit material, not Tor itself. > > In other words, the feds locate onion sites hosting illegal > material, using standard intelligence gathering techniques. They > establish (encrypted, secure, private, and presumably uncracked) > Tor connections to those servers, and then attack them over those > connections. There are frequently vulnerabilities in hosting > services - content platforms, web forums, third-party Javascript > libraries, file uploads, management interfaces...many sites, > darkweb or not, have much broader attack surfaces than their owners > understand.
Truth. > Having pwned the server, a malware component is then injected to > visiting computers. Ie: when the criminal visits the infected > site, his PC is infected (over that encrypted, secure, etc) > connection. Now infected, his PC will be under the control of the > FBI, and the investigation will proceed from there. As soon as it's > connected to the regular internet, that connection will be traced, > but that connection is not necessary - data on the PC can be > exfiltrated by the feds over Tor and used to identify the user. Tor Project ought to inform users about this risk, and recommend countermeasures. It's not like this is new. I see nothing at <https://www.torproject.org/download/download.html.en#warning>. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iQEcBAEBAgAGBQJXhzMrAAoJEGINZVEXwuQ+aNcH/RuVar64z8teBVyE+lW6ttkj 1WAQUzoPwzowHgQqlzrGLg2U48DRFXAkvYDREnKJ1kyXHvva39vwuRxLOFclslWR 52jszspAlcQvDaM53NIvgusNMw6B1l6yvhvuf6aKb74W2BA5dWcfJxSd2QmVZYF7 b63uVPFRBBlvBwNcFvfwAgpOVXUklErp44QvWoQ2RpTIygVNFw6bKufX/ECt+uu/ 7vgkKxRySabeIPlDDA8q08Wi5Prze1Ge1fZ8lt7tAHJgOW5FXaFbyWDnGipFggwG 2LNE0LQk1BkUV/o6IUlciY5QFZpoB+MSY1g7TDysKokLrrkOHZ9wYqBshI8HTwI= =v9+h -----END PGP SIGNATURE----- -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
