FBI Take Down Dark Web Drugs Traders

Uploaded on 2017-08-01 in GOVERNMENT-Law Enforcement, FREE TO VIEW

An international law enforcement effort has brought down two of the dark web’s largest marketplaces, AlphaBay and Hansa Market.

According to a Europol announcement, AlphaBay hosted roughly $1 billion in transactions since its founding in 2014, primarily focused on drugs and fraudulent IDs. At the time of its takedown, it reached over 200,000 users and 40,000 vendors, with nearly $4 million in bitcoin stored in escrow wallets on the site.

“This is one of the most important criminal investigations of this entire year,” said Attorney General Sessions at a press briefing accompanying the announcement. “I believe that because of this operation, people around the world are safer from the threat of identity fraud and malware, and safer from deadly drugs.”

As hidden services, both AlphaBay and Hansa were accessible only through the Tor network, presenting a significant challenge to law enforcement agents hoping to seize the host servers. It’s still unclear how authorities were able to locate the servers or site administrators, but it appears to have been done without compromising the underlying protections of Tor.

While this marks the first official Department of Justice statement on the matter, the AlphaBay takedown has been the subject of rumors for weeks. AlphaBay’s site went down around midnight on July 4th, but the page simply timed out rather than showing the official seizure notice that has accompanied previous marketplace takedowns.

That led to some speculation that the owners of the site had performed an exit scheme, until a Wall Street Journal report the following week indicated the site had been taken offline by an international law enforcement effort, citing sources familiar with the matter.

At roughly the same time that the site disappeared, Canadian national Alexander Cazes was arrested by Thai authorities on behalf of US law enforcement. He was found dead in his cell the following week. This announcement confirms that Cazes was arrested for his role in creating and maintaining AlphaBay, although the circumstances of his death remain unclear.

The indictment also involves the seizure of significant assets from Cazes, who appears to have grown quite wealthy from AlphaBay. A seizure document lists over $5 million in Bitcoin, $1.8 million in Ethereum, and $760,000 in Zcash, in addition to conventional bank accounts of unknown value. The government also seized a 2013 Lamborghini Aventador, a Porsche Panamera S, a BMW motorcycle, and a Mini Cooper allegedly owned by Cazes, along with real estate properties in Bangkok, Phuket, and Cyprus.

Hansa Market remained online in the aftermath of the takedown, in what now appears to be a coordinated strategy by law enforcement. According to Europol, Hansa saw an eightfold increase in users after the disappearance of AlphaBay, allowing authorities to gather significant information about the market’s customer base. The agency claims to have collected 10,000 addresses of European Hansa customers over the course of the investigation.

Notably, the announcement was also marred by significant technical issues. The US Department of Justice intended to announce the takedown in a live stream at justice.gov/live, but the morning of the announcement, the site was unavailable for many users. It’s unclear whether the downtime was the result of a denial-of-service attack, or simply technical failures within the department.

The Verge:

 

« What Will The Car Of 2040 Be Like?
Dangers Of Betting On Hybrid Cloud »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Digital Forensics Inc (DFI)

Digital Forensics Inc (DFI)

Digital Forensics Inc. is a nationally recognized High Technology Forensic Investigations and Information System Security firm

Ezenta

Ezenta

Ezenta is a Danish IT security consulting firm.

Haltdos

Haltdos

Haltdos is an AI driven website protection service that secures websites against today's cyber threats.

Garrison Technology

Garrison Technology

Garrison SAVI® is a unique technology for secure remote browsing that can dramatically change the risk profile for enterprise cyber security.

TI Safe

TI Safe

TI Safe provide cybersecurity solutions for industrial networks of main critical infrastructures in Latin America.

Honeywell Process Solutions (HPS)

Honeywell Process Solutions (HPS)

Honeywell's Industrial Cyber Security Solutions help plants and critical infrastructure sectors defend the availability, reliability and safety of their industrial control systems.

Center for Education & Research in Information Assurance & Security (CERIAS)

Center for Education & Research in Information Assurance & Security (CERIAS)

CERIAS is one of the world’s leading centers for research and education in areas of information and cyber security.

Russell Reynolds Associates

Russell Reynolds Associates

Russell Reynolds Associates is a global leadership advisory and search firm with functional expertise in Digital Leadership, Data & Analytics, and Compliance.

MVP Tech

MVP Tech

MVP Tech designs and deploys next generation infrastructures where Security and Technology converge.

Centre for Cyber Security Research and Innovation (CSRI) - Deakin University

Centre for Cyber Security Research and Innovation (CSRI) - Deakin University

CSRI solves the cyber security threats of tomorrow, today. We work with industry and government leaders on innovative research that has real-world impact.

Avancer Corporation

Avancer Corporation

Avancer Corporation is a multi-system integrator focusing on Identity and Access Management (IAM) Technology. Founded in 2004.

Eastern Cyber Resilience Centre (ECRC)

Eastern Cyber Resilience Centre (ECRC)

The Eastern Cyber Resilience Centre is part of the national roll out of Cyber Resilience Centres in the UK which began in 2019.

Strike Security

Strike Security

Strike Security offers a continuous penetration testing platform that combines automation with ethical hackers.

FourNet

FourNet

FourNet is an award-winning provider of cloud and managed services; we work closely with our clients to enable digital transformation across their organisation.

Segra

Segra

Segra owns and operates one of the nation’s largest fiber networks and provides best-in-class broadband and data security solutions throughout the Southeast and Mid-Atlantic.

Yokai

Yokai

Yokai is a secure, distributed platform for data communication with enhanced security features tailored for classified environments such as finance, defence, healthcare, cybersecurity, and more.