Navigation X
ALERT
Click here to register with a few steps and explore all our cool stuff we have to offer!



 795

Real story..

by SlodderrVos - 15 December, 2020 - 05:16 PM
This post is by a banned member (SlodderrVos) - Unhide
83
Posts
21
Threads
4 Years of service
#1
Hi members
Iam
SlodderrVos

Its Story Time 
 Popcorn

Ross William Ulbricht [aka. Dread Pirate Roberts](Founder of Silk Road)
Ross Ulbricht is a story that I am sure everyone is familiar with, I'd hope to think at least 90% of the people on the dark web know who he is. For those who don't know, he ran the fist dark web drug market place (Silk Road) and set the standards for copycats and wannabes.

Silk Road saw a massive $1.2 billion in exchanges and was a total monopoly, no other market stood a chance.

Law enforcement initially passed off investigators who were looking for the earliest references of the Silk Road. Investigations were made easier as Ross commonly reused usernames and had bad OPSEC

One investigator was actually ignored and had actually found Ross Ulbrichts email, his findings were found to be more useful further down the line.

The earliest reference found was found on a website called the Shroomery (forum for mushroom based phycodelics) in January 2011 in a post by a user named 'Altoid'. That username was also on a website called BitcoinTalk where he talked about Silk Road and also asked for IT advice. In one post asking for IT advice Altoid asked "interested parties to contact rossulbricht at FUCKING gmail dot com". Dumb in hindsight, right?

He also asked a question on stack overflow asking "how can I connect to a Tor hidden service using curl in php". He asked this question under the username 'Ross Ulbricht' but quickly changed it to 'Frosty'.

He also talked too much on Silk Road. He kepted talking about his philosophy and economic ideas. Which made it easier for law enforcement to ensure it was him with the use of 'guess who' forensics where you can cut down a suspect pool by the more things you know.

With time corrolation they could figure out that Ross's replies on Silk Road will probably put him within the Pacific time zone.

The FBI actually got inside of the Silk Road servers ( potentially Silk Road staff turn informant ) and saw someone was connecting to Silk Road from a internet Cafe. FBI found SSH keys which ended with "frosty@frosty".

FBI started to track Ulbrich and setup a sting operation in a library. Two undercover officers pretended to have a argument, and while Ross entered his password into his computer the police pounced on him. Leaving him logged in and his computer unencrypted.
There are way more places whe
re he went wrong. Like ordering multiple fake IDs at the same time getting caught and telling the police "anyone could have gone on silk road and ordered that", or saying to room mates his name is Josh. There were so many slip ups, but I'd waste time talking about all of them.

What can we learn.
Don't reuse usernames. And be careful when marketing a hidden service. Keep the real life accounts totally seperate. Don't talk to much about beliefs. Don't order multiple fake ID's at the same time. And there are probably a couple more.
Ross Ulbricht was the first of many, and it was unlucky he had so many trip ups. But from when he was around there was not as many case studies of OPSEC trip ups.


I will keep posting real stories, in hope that anyone who's dealing with Dark Business be more aware of the OPSEC measures! 
Pepelove

DONT message me anymore on ICQ! Message me now on TELEGRAM!
Have a nice day! [Image: tea.png][/b]
This post is by a banned member (Snake1337) - Unhide
Snake1337  
Godlike
2.351
Posts
317
Threads
5 Years of service
#2
Good story keep em coming pepeokay
[Image: 7xibycc.jpg]

This post is by a banned member (SlodderrVos) - Unhide
83
Posts
21
Threads
4 Years of service
#3
(15 December, 2020 - 05:38 PM)Snake1337 Wrote: Show More
Good story keep em coming pepeokay

Pepelove

DONT message me anymore on ICQ! Message me now on TELEGRAM!
Have a nice day! [Image: tea.png][/b]
This post is by a banned member (Ping) - Unhide
Ping  
Staff
2.603
Posts
84
Threads
Staff Team
6 Years of service
#4
I'm all for PGP encrypted chats, even if casual. Never deny opsec options, you never know when you may regret it.

PGP Public Key is linked in my signature.  Smart
[DM to purchase Signature Ad Slots]

[Ping's PGP Key]
I am NOT affiliated with any "Ping" shops, or services being marketed over this forum.
Before conducting any form of business confirm my identity through onsite PM.
This post is by a banned member (SlodderrVos) - Unhide
83
Posts
21
Threads
4 Years of service
#5
(15 December, 2020 - 06:33 PM)Ping Wrote: Show More
I'm all for PGP encrypted chats, even if casual. Never deny opsec options, you never know when you may regret it.

PGP Public Key is linked in my signature.  Smart

I really like Threema and SkyECC you know those?

DONT message me anymore on ICQ! Message me now on TELEGRAM!
Have a nice day! [Image: tea.png][/b]
This post is by a banned member (Ping) - Unhide
Ping  
Staff
2.603
Posts
84
Threads
Staff Team
6 Years of service
#6
(15 December, 2020 - 06:37 PM)SlodderrVos Wrote: Show More
(15 December, 2020 - 06:33 PM)Ping Wrote: Show More
I'm all for PGP encrypted chats, even if casual. Never deny opsec options, you never know when you may regret it.

PGP Public Key is linked in my signature.  Smart

I really like Threema and SkyECC you know those?

Enter SkyECC's million dollar hack challenge.  Jew
[DM to purchase Signature Ad Slots]

[Ping's PGP Key]
I am NOT affiliated with any "Ping" shops, or services being marketed over this forum.
Before conducting any form of business confirm my identity through onsite PM.
This post is by a banned member (hersheyb) - Unhide
hersheyb  
Registered
243
Posts
4
Threads
4 Years of service
#7
great read!
This post is by a banned member (SlodderrVos) - Unhide
83
Posts
21
Threads
4 Years of service
#8
(15 December, 2020 - 07:01 PM)Ping Wrote: Show More
(15 December, 2020 - 06:37 PM)SlodderrVos Wrote: Show More
(15 December, 2020 - 06:33 PM)Ping Wrote: Show More
I'm all for PGP encrypted chats, even if casual. Never deny opsec options, you never know when you may regret it.

PGP Public Key is linked in my signature.  Smart

I really like Threema and SkyECC you know those?

Enter SkyECC's million dollar hack challenge.  Jew

Bro it is impossible to hack them xD

DONT message me anymore on ICQ! Message me now on TELEGRAM!
Have a nice day! [Image: tea.png][/b]

Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
or
Sign in
Already have an account? Sign in here.


Forum Jump:


Users browsing this thread: 1 Guest(s)