Blackout On The Dark Web

Uploaded on 2019-01-14 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Hackers have deleted more than 6,500 sites being held on a popular dark web server. Called Daniel's Hosting, the site was sitting on the hidden Tor network and many people used it to host pages they did not want to publish on the wider web.

Administrator Daniel Winzen said no back-ups were kept of the pages it hosted. He said the site should be back in service in December.
 
"Around 6,500 hidden services were hosted on the server," wrote Mr Winzen in a message put on the welcome page of the web companion to the site. "There is no way to recover from this breach, all data is gone."

Tor, or The Onion Router, is a way of organising web-like pages so it is hard to work out where the information is located and who is running them. Web pages sited on the Tor network get an a.onion suffix. The Tor browser also lets people browse the web in a way that conceals their location and obscures their identity. 

Daniel's Hosting became one of the most popular sites for, a.onion site owners, after the previously biggest host went offline in early 2017.

Daniel's hosted a very wide variety of material including fan fiction, political tracts, philosophy books, porn, hacked files, videos, web marketplaces, crypto-cash forums and places where whistleblowers could leave documents. Mr Winzen told the BBC that he was still trying to work out how hackers had accessed the site on 15 November, when all the data was deleted.

"As of now, I haven't found the vulnerability," he said.

The prime candidate is a newly discovered vulnerability in PHP, a computer scripting language used for website development, that was being circulated in some hacker circles shortly before Danwin was attacked. However, Mr Winzen told ZDNet that he was not sure that this was the route the hackers took to gain access. When the site returns, he said he would take the chance to change "some bad design choices of the past" and improve how it runs.

It is also not clear who broke into Daniel's Hosting or why the data was deleted. The Anonymous hacking collective has been behind takedowns of other dark web hosts but, so far, there is no sign of that group's involvement in this attack.

BBC:

You Might Also Read:

Dark Web Dealers Voluntarily Ban Deadly Fentanyl:

 
« UK Launches Long-Awaited Cyber Skills Strategy
Russia Supported Trump Election Campaign »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Landry & Associates

Landry & Associates

Landry & Associates is a multidisciplinary firm specializing in risk management, performance and technology management.

Arcitura Education

Arcitura Education

Arcitura is a leading global provider of progressive, vendor-neutral IT training and certification programs.

Cloud Credential Council (CCC)

Cloud Credential Council (CCC)

The CCC is a leading provider of vendor-neutral certification programs that empower IT and business professionals in their digital transformation journey.

Allegro Software

Allegro Software

Allegro provide secure software for the Internet of Things.

Igloo Security

Igloo Security

Igloo Security is a leader and pioneer in SIEM (Security Information & Event Management), PSIM (Physical Security Information Management) and MSS (Managed Security Services).

ECOS Technology

ECOS Technology

ECOS Technology specializes in the development and sale of IT solutions for high-security remote access as well as the management of certificates and smart cards.

Cybersecurity Tech Accord

Cybersecurity Tech Accord

The Cybersecurity Tech Accord promotes a safer online world by fostering collaboration among global technology companies.

KOVRR

KOVRR

Kovrr financially quantifies cyber risk on demand. Our technology enables decision makers to seamlessly drive actionable cyber risk management decisions.

Department of Justice - Office of Cybercrime (DOJ-OOC)

Department of Justice - Office of Cybercrime (DOJ-OOC)

The Office of Cybercrime within the Philippines Department of Justice is the Central Authority in all matters relating to international mutual assistance and extradition for cybercrime.

White & Black

White & Black

White & Black are specialist corporate & technology lawyers based in London & Oxford.

Casque SNR

Casque SNR

CASQUE SNR is the next generation of Identity Assurance that has potential to supersede existing solutions. It provides Identity Assurance for both people and things.

Accolite Digital

Accolite Digital

Accolite is an innovative, design thinking software company that guarantees seamless digital experiences with maximum results.

DeVry University - Cyber Security Degree

DeVry University - Cyber Security Degree

Explore the dynamic world of data protection with a hybrid or online cyber security degree specialization with DeVry's IT & Networking Bachelor's Degree.

Cyber Protection Group (CPG)

Cyber Protection Group (CPG)

Cyber protection Group specialize in Penetration Testing. We work with enterprise level companies as well as small to medium sized businesses.

eMudhra

eMudhra

eMudhra is a leader in Identity and Transaction Management Solutions.

Net Essence

Net Essence

Net Essence is a Managed IT Services Provider. We deliver effective, reliable and fit-for-purpose IT solutions for SMEs based in the UK.