Law Enforcement Deanonymizes Tor Users
external-link
fedilink
61
Law Enforcement Deanonymizes Tor Users
fedilink
The German police have successfully deanonymized at least four Tor users. It appears they watch known Tor relays and known suspects, and use timing analysis to figure out who is using what relay. T…

The German police have successfully deanonymized at least four Tor users. It appears they watch known Tor relays and known suspects, and use timing analysis to figure out who is using what relay.
Tor has written about this.
Hacker News thread.

Em Adespoton
link
fedilink
19
edit-2
7d

It’s worth noting that a sizeable number of Tor exit nodes are actually run by the German government. Meaning: they know exactly what’s going through those nodes.

So all they need to do to unmask a Tor source IP is control the first hop too. They’re in a position where they can narrow searches down to activity they’re actually interested in without significantly decreasing the privacy of other Tor users, and then they can peel back the onion.

This has been the case since shortly after Tor was created.

@far_university190@feddit.org
link
fedilink
97d

In contrast to the CCC, Chaos Computer Club, who was provided access to the documents related to the case and was able to analyze and validate the reporter’s assumptions, we were only provided a vague outline and asked broad clarifying questions that left us with uncertainty of the facts, and questions of our own.

What the fuck

@Melatonin@lemmy.dbzer0.com
link
fedilink
47d

Who the hell is the Chaos Computer Club

@far_university190@feddit.org
link
fedilink
13
edit-2
7d

large club of people interested in technology

edit: https://www.ccc.de/en/

The Chaos Computer Club e. V. (CCC) is Europe’s largest association of hackers. For more than thirty years we are providing information about technical and societal issues, such as surveillance, privacy, freedom of information, hacktivism, data security and many other interesting things around technology and hacking issues. As the most influential hacker collective in Europe we organize campaignsevents, lobbying and publications as well as anonymizing services and communication infrastructure. There are many hackerspaces in and around Germany which belong to or share a common bond to the CCC as stated in our hacker ethics.

@unexposedhazard@discuss.tchncs.de
link
fedilink
75
edit-2
7d

Bad post.

A: old news

B: missing important context

C: Most likely partially fabricated by law enforcement according to many experts and the tor project. They didnt execute a full timing attack because they are not capable of doing that.

From the limited information The Tor Project has, we believe that one user of the long-retired application Ricochet was fully de-anonymized through a guard discovery attack. This was possible, at the time, because the user was using a version of the software that neither had Vanguards-lite, nor the vanguards addon, which were introduced to protect users from this type of attack. This protection exists in Ricochet-Refresh, a maintained fork of the long-retired project Ricochet, since version 3.0.12 released in June of 2022.

JaggedRobotPubes
link
fedilink
77d

Thanks for this.

@Imprint9816@lemmy.dbzer0.com
link
fedilink
14
edit-2
7d

Yeah not sure why OP felt the need to use such a click-bait title.

@sorter_plainview@lemmy.today
link
fedilink
107d

Maybe OP is part of a law enforcement entity!!

@Imprint9816@lemmy.dbzer0.com
link
fedilink
4
edit-2
7d

I doubt it. I think OP wanted upvotes and didn’t read carefully. Something like “tor user de-anonymized via retired app” would of been more accurate.

This is another great lesson that even the best privacy tools can’t protect a user from their own bad opsec.

It just sucks as a lot of Lemmy users will just read the title and assume its true and then tell their friends tor is no longer safe.

sunzu2
link
fedilink
17d

German feds cant maintain proper posture against russia so these limp dick cucks need some good PR?

@far_university190@feddit.org
link
fedilink
2
edit-2
7d

They say not given full access, so post from tor may not full picture.

In interview daniel moßbrucker say that onion v3 was affect 2 time, so not only ricochet.

Source for expert saying it fabricated?

Source for government not capable of timing attack?

Want to read up on more opinion on this.

edit: if daniel moßbrucker trustworthy. might also fabricate story.

Lightscription
link
fedilink
4
edit-2
7d

Bundeskriminalamt

https://www.bka.de/EN/OurTasks/AreasOfCrime/Cybercrime/cybercrime_node.html

Government (Lodge & Station): their tots, you can’t have!

@RagnarokOnline@programming.dev
link
fedilink
57d

Thanks for linking the HN thread 👍

Create a post

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

  • Posting a link to a website containing tracking isn’t great, if contents of the website are behind a paywall maybe copy them into the post
  • Don’t promote proprietary software
  • Try to keep things on topic
  • If you have a question, please try searching for previous discussions, maybe it has already been answered
  • Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
  • Be nice :)

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

  • 0 users online
  • 57 users / day
  • 383 users / week
  • 1.5K users / month
  • 5.7K users / 6 months
  • 1 subscriber
  • 2.97K Posts
  • 74.6K Comments
  • Modlog