Logo

    Ep 24: Operation Bayonet

    en-usOctober 15, 2018
    What federal stance does the U.S. take on marijuana?
    How do dark markets facilitate illegal drug acquisition?
    What tactics did European authorities use against Hansa?
    Who coordinated the takedown of AlphaBay's owner?
    What challenges do law enforcement face with dark markets?

    Podcast Summary

    • The Rise of Dark Markets and the Changing Landscape of Marijuana AcquisitionThe inconsistent laws regarding marijuana legalization in the US have led to the emergence of dark markets such as AlphaBay, which provide a safer and more convenient way for buyers to acquire illegal drugs, including marijuana, despite the inherent dangers.

      Marijuana remains illegal at the federal level in the United States, but some states have legalized it for medical or recreational use. This inconsistency in laws may lead individuals to take risks in getting illegal marijuana. However, the emergence of dark markets such as AlphaBay has made acquiring illegal drugs, including marijuana, easier and safer for buyers. Tor, the most popular darknet, provides anonymity for anyone who wishes to access deep websites or evade government oppression. Individuals who are searching for a specific product in the darknet can choose based on good prices, fast shipping, and high ratings of sellers. Despite the danger and the illegal nature of the dark markets, some individuals prefer to use them rather than risk their safety in the streets.

    • The Dark Side of the Tor Network: Illegal Activity and Drug MarketplacesUsing Tor drug marketplaces requires careful consideration and protective measures, including VPN, Bitcoin, PGP, and a separate identity. Despite law enforcement efforts, these marketplaces persist on the Tor network.

      The Tor network is often used for illegal activity, such as drug marketplaces, counterfeit money, and criminal hacking. The most popular type of site on the Tor network are drug marketplaces. These are sites just like eBay where you can buy and sell items and see sellers' rankings to help you decide if you should trust them or not. The peer review method works pretty well. To use these sites, you need to take steps to protect your identity, such as buying Bitcoin, getting a VPN service, setting up PGP, creating separate e-mail addresses and aliases, and a different persona. Despite the authorities' efforts to shut down these dark markets, people continue to create them and use them to buy and sell illegal items.

    • The Rise and Fall of AlphaBay: A Tale of Dark Markets and Law EnforcementDespite the challenges of keeping a dark market operational and evading law enforcement, competition can arise from unexpected sources and ultimately lead to downfall.

      AlphaBay was the largest dark market in the world for drugs, counterfeit items, and illegal services. The site's moderators were helpful, the interface friendly, and transactions could only be done using Bitcoin, Monero, and Ethereum. The site charged a commission of 2 - 4%. The ability to keep the server's location secret and encrypt all chats and connections made it difficult for law enforcement agencies to shut down the site. AlphaBay faced competition from other dark markets and even street gangs who were hit economically due to the rise of online drug markets. Regular hacking attempts and the FBI's undercover purchase eventually led to the downfall of AlphaBay.

    • FBI and Dutch authorities bust two dark web marketsBy tracking email addresses and development servers, law enforcement can uncover the real identities and locations of dark web administrators. Collaboration between countries and agencies is crucial in cracking down on illegal online marketplaces.

      The FBI bought a variety of drugs and items on AlphaBay, eventually identifying the owner through an unusual email address in a welcome email. Law enforcement also discovered Hansa, another dark market, and were able to track down the servers and admins through a tip about a development server on the regular internet. The Dutch High Tech Crimes Unit combed through the contents of the hard drives and found chat logs which lead to the real names and home address of the admins, but they were located in Germany. The German government stated that they were already tracking the two men.

    • Collaboration and Control: How Operation Bayonet dismantled the biggest dark marketsThrough Operation Bayonet, authorities successfully collaborated to take down AlphaBay and Hansa, potentially arresting many drug dealers and striking a blow to the dark marketplace, crippling the illegal online trade.

      Through Operation Bayonet, the Dutch, German, and FBI authorities collaborated and were able to successfully take down two of the biggest dark markets - AlphaBay and Hansa. By taking control of Hansa and collecting information on its users, authorities were able to potentially arrest a lot of drug dealers. The German police successfully raided the homes of the Hansa admins while their laptops were open and unlocked, ultimately leading to the migration of the entire Hansa server to the Netherlands. This operation was a huge blow to the dark marketplace and it is believed that it will destroy trust and potentially cripple the whole online trade of illegal items for a long time.

    • European Authorities Take Down Dark Market and Use it for Mass SurveillanceWith advanced techniques such as tracking passwords and using homing beacons, authorities successfully bust illegal trade sites, putting criminals behind bars.

      European authorities successfully took down the popular dark market, Hansa, and transitioned it into a mass surveillance station to track down dealers and buyers of illegal items. They obtained crucial information such as passwords, communication history, and metadata from uploaded pictures to reveal locations of sellers and buyers. They even tricked users into downloading a homing beacon to expose their real IP addresses. The Dutch police impersonated the previous admins and conducted excellent customer support to keep the users from suspecting anything. The FBI coordinated with Canada and Thailand to arrest the owner of AlphaBay, Alexandre Cazes, and took down their servers. The goal was to capture Alexandre while he was logged onto his computer, giving the authorities proof of the site's admin.

    • The Dark World of Alexandre Caz, Owner of AlphaBayRunning a dark market or any illicit business poses severe consequences, no matter how tech-savvy you may appear. Alexandre Caz's arrest and loss of assets highlights the risks involved in illegal operations.

      Alexandre Caz was the owner of AlphaBay, the world's largest dark market, and was arrested in Thailand. The FBI seized his servers, assets, and cryptocurrencies worth millions of dollars. He was charging a 2-4% commission on every transaction that happened through AlphaBay, totaling around $450,000,000 in transactions. His notes claimed that he had a self net-worth of $23,000,000. This showcases the risky business and illegal activities involved in running a dark market or any illicit business. Despite his appearances of an average computer techie, his actions had severe consequences, leading to his arrest and loss of everything he owned. The illegal operations and involvement with dark markets can lead anyone into serious trouble and hefty consequences.

    • The downfall of AlphaBay and Hansa dark marketsLaw enforcement can track down criminals even in the depths of the dark web. Trust in darknet markets is fragile as they may be taken down any moment.

      The takedown of AlphaBay and Hansa dark markets led to chaos in the dark web community, shattered the trust of buyers and sellers, and resulted in multiple arrests and seizures of millions of dollars worth of Bitcoin. The case proved that criminals cannot hide in the darknet, and the forces of law and justice will find them and dismantle their network. Alexandre, the owner of AlphaBay, committed suicide after knowing everything was being seized and his wife being questioned. While AlphaBay shut down according to plan, new users flooded the Dutch government-controlled Hansa market, leading to its shutdown after 27 days of monitoring and collecting valuable information on about 27,000 transactions.

    • Poor Personal Security Leads to Discovery of Dark Market ActivityThose involved in illegal activities online must take extra measures to remain anonymous, including using Tor, VPNs, Bitcoin tumblers, and PGP encryption. It is also crucial to avoid shipping to personal addresses, strip metadata from photos, and use a dedicated computer. The demand for illegal items will continue to fuel the growth of dark markets.

      The only way the feds were able to catch the people involved in the dark market was due to their poor personal security. They took it lightly and slacked off on their own security, and this led to their discovery. Those who want to be anonymous while conducting massive illegal activities online still can, but they need to exercise all possible options to stay anonymous, such as using Tor, VPN, Bitcoin tumblers, PGP in encrypted chats, and fake personas. Also, it is crucial not to ship anything to their actual house, strip out metadata from photos, and use a separate computer to do all this on. The story also proves that there is a worldwide demand for illegal items leading to the emergence of new dark markets.

    Recent Episodes from Darknet Diaries

    149: Mini-Stories: Vol 3

    149: Mini-Stories: Vol 3

    In this episode we hear EvilMog (https://x.com/Evil_Mog) tell us a story about when he had to troubleshoot networks in Afghanistan. We also get Joe (http://x.com/gonzosec) to tell us a penetration test story.

    Sponsors
    Support for this show comes from Varonis. Do you wonder what your company’s ransomware blast radius is? Varonis does a free cyber resilience assessment that tells you how many important files a compromised user could steal, whether anything would beep if they did, and a whole lot more. They actually do all the work – show you where your data is too open, if anyone is using it, and what you can lock down before attackers get inside. They also can detect behavior that looks like ransomware and stop it automatically. To learn more visit www.varonis.com/darknet.

    Support for this show comes from Axonius. The Axonius solution correlates asset data from your existing IT and security solutions to provide an always up-to-date inventory of all devices, users, cloud instances, and SaaS apps, so you can easily identify coverage gaps and automate response actions. Axonius gives IT and security teams the confidence to control complexity by mitigating threats, navigating risk, decreasing incidents, and informing business-level strategy — all while eliminating manual, repetitive tasks. Visit axonius.com/darknet to learn more and try it free.

    Support for this show comes from ThreatLocker®. ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure from the ground up. With ThreatLocker® Allowlisting and Ringfencing™, you gain a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker® provides Zero Trust control at the kernel level that enables you to allow everything you need and block everything else, including ransomware! Learn more at www.threatlocker.com.

    Darknet Diaries
    en-usSeptember 03, 2024

    148: Dubsnatch

    148: Dubsnatch

    Ever wondered how far a fan would go to get a sneak peek of their favorite artist’s unreleased tracks? In this episode, we uncover the audacious story of some teens bent on getting their hands on the newest dubstep music before anyone else.

    Sponsors
    Support for this show comes from Varonis. Do you wonder what your company’s ransomware blast radius is? Varonis does a free cyber resilience assessment that tells you how many important files a compromised user could steal, whether anything would beep if they did, and a whole lot more. They actually do all the work – show you where your data is too open, if anyone is using it, and what you can lock down before attackers get inside. They also can detect behavior that looks like ransomware and stop it automatically. To learn more visit www.varonis.com/darknet.

    Support for this show comes from Axonius. The Axonius solution correlates asset data from your existing IT and security solutions to provide an always up-to-date inventory of all devices, users, cloud instances, and SaaS apps, so you can easily identify coverage gaps and automate response actions. Axonius gives IT and security teams the confidence to control complexity by mitigating threats, navigating risk, decreasing incidents, and informing business-level strategy — all while eliminating manual, repetitive tasks. Visit axonius.com/darknet to learn more and try it free.

    Support for this show comes from ThreatLocker®. ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure from the ground up. With ThreatLocker® Allowlisting and Ringfencing™, you gain a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker® provides Zero Trust control at the kernel level that enables you to allow everything you need and block everything else, including ransomware! Learn more at www.threatlocker.com.


    Darknet Diaries
    en-usAugust 06, 2024

    147: Tornado

    147: Tornado

    In this episode, Geoff White (https://x.com/geoffwhite247) tells us what happened to Axie Infinity and Tornado cash. It’s a digital heist of epic proportions that changes everything.

    This story comes from part of Geoff’s book “Rinsed” which goes into the world of money laundering. Get yours here https://amzn.to/3VJs7pb.

    Darknet Diaries
    en-usJuly 02, 2024

    146: ANOM

    146: ANOM

    In this episode, Joseph Cox (https://x.com/josephfcox) tells us the story of anom. A secure phone made by criminals, for criminals.

    This story comes from part of Joseph’s book “Dark Wire” which you should definitely read. Get yours here https://www.hachettebookgroup.com/titles/joseph-cox/dark-wire/9781541702691.

    Darknet Diaries
    en-usJune 04, 2024

    145: Shannen

    145: Shannen
    Shannen Rossmiller wanted to fight terrorism. So she went online and did. Read more about her from her book “The Unexpected Patriot: How an Ordinary American Mother Is Bringing Terrorists to Justice”. An affiliate link to the book on Amazon is here: https://amzn.to/3yaf5sI. Thanks to Spycast for allowing usage of the audio interview with Shannen. Sponsors Support for this show comes from Varonis. Do you wonder what your company’s ransomware blast radius is? Varonis does a free cyber resilience assessment that tells you how many important files a compromised user could steal, whether anything would beep if they did, and a whole lot more. They actually do all the work – show you where your data is too open, if anyone is using it, and what you can lock down before attackers get inside. They also can detect behavior that looks like ransomware and stop it automatically. To learn more visit www.varonis.com/darknet. Support for this show comes from Axonius. The Axonius solution correlates asset data from your existing IT and security solutions to provide an always up-to-date inventory of all devices, users, cloud instances, and SaaS apps, so you can easily identify coverage gaps and automate response actions. Axonius gives IT and security teams the confidence to control complexity by mitigating threats, navigating risk, decreasing incidents, and informing business-level strategy — all while eliminating manual, repetitive tasks. Visit axonius.com/darknet to learn more and try it free. Support for this show comes from ThreatLocker®. ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure from the ground up. With ThreatLocker® Allowlisting and Ringfencing™, you gain a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker® provides Zero Trust control at the kernel level that enables you to allow everything you need and block everything else, including ransomware! Learn more at www.threatlocker.com. Learn more about your ad choices. Visit podcastchoices.com/adchoices

    144: Rachel

    144: Rachel
    Rachel Tobac is a social engineer. In this episode we hear how she got started doing this and a few stories of how she hacked people and places using her voice and charm. Learn more about Rachel by following her on Twitter https://twitter.com/RachelTobac or by visiting https://www.socialproofsecurity.com/ Daniel Miessler also chimes in to talk about AI. Find out more about him at https://danielmiessler.com/. Sponsors Support for this show comes from Varonis. Do you wonder what your company’s ransomware blast radius is? Varonis does a free cyber resilience assessment that tells you how many important files a compromised user could steal, whether anything would beep if they did, and a whole lot more. They actually do all the work – show you where your data is too open, if anyone is using it, and what you can lock down before attackers get inside. They also can detect behavior that looks like ransomware and stop it automatically. To learn more visit www.varonis.com/darknet. Support for this show comes from Axonius. The Axonius solution correlates asset data from your existing IT and security solutions to provide an always up-to-date inventory of all devices, users, cloud instances, and SaaS apps, so you can easily identify coverage gaps and automate response actions. Axonius gives IT and security teams the confidence to control complexity by mitigating threats, navigating risk, decreasing incidents, and informing business-level strategy — all while eliminating manual, repetitive tasks. Visit axonius.com/darknet to learn more and try it free. Support for this show comes from ThreatLocker®. ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure from the ground up. With ThreatLocker® Allowlisting and Ringfencing™, you gain a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker® provides Zero Trust control at the kernel level that enables you to allow everything you need and block everything else, including ransomware! Learn more at www.threatlocker.com. Learn more about your ad choices. Visit podcastchoices.com/adchoices

    143: Jim Hates Scams

    143: Jim Hates Scams
    Jim Browning has dedicated himself to combatting scammers, taking a proactive stance by infiltrating their computer systems. Through his efforts, he not only disrupts these fraudulent operations but also shares his findings publicly on YouTube, shedding light on the intricacies of scam networks. His work uncovers a myriad of intriguing insights into the digital underworld, which he articulately discusses, offering viewers a behind-the-scenes look at his methods for fighting back against scammers. Jim’s YouTube channel: https://www.youtube.com/c/JimBrowning Sponsors Support for this episode comes from NetSuite. NetSuite gives you visibility and control of your financials, planning, budgeting, and of course - inventory - so you can manage risk, get reliable forecasts, and improve margins. NetSuite helps you identify rising costs, automate your manual business processes, and see where to save money. KNOW your numbers. KNOW your business. And get to KNOW how NetSuite can be the source of truth for your entire company. Visit www.netsuite.com/darknet to learn more. This episode is sponsored by Intruder. Growing attack surfaces, dynamic cloud environments, and the constant stream of new vulnerabilities stressing you out? Intruder is here to help you cut through the chaos of vulnerability management with ease. Join the thousands of companies who are using Intruder to find and fix what matters most. Sign up to Intruder today and get 20% off your first 3 months. Visit intruder.io/darknet. This show is sponsored by Shopify. Shopify is the best place to go to start or grow your online retail business. And running a growing business means getting the insights you need wherever you are. With Shopify’s single dashboard, you can manage orders, shipping, and payments from anywhere. Sign up for a one-dollar-per-month trial period at https://shopify.com/darknet. Learn more about your ad choices. Visit podcastchoices.com/adchoices

    142: Axact

    142: Axact
    Axact sells fake diplomas and degrees. What could go wrong with this business plan? Sponsors Support for this episode comes from NetSuite. NetSuite gives you visibility and control of your financials, planning, budgeting, and of course - inventory - so you can manage risk, get reliable forecasts, and improve margins. NetSuite helps you identify rising costs, automate your manual business processes, and see where to save money. KNOW your numbers. KNOW your business. And get to KNOW how NetSuite can be the source of truth for your entire company. Visit www.netsuite.com/darknet to learn more. Support for this show comes from ThreatLocker®. ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure from the ground up. With ThreatLocker® Allowlisting and Ringfencing™, you gain a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker® provides Zero Trust control at the kernel level that enables you to allow everything you need and block everything else, including ransomware! Learn more at www.threatlocker.com. This show is sponsored by Shopify. Shopify is the best place to go to start or grow your online retail business. And running a growing business means getting the insights you need wherever you are. With Shopify’s single dashboard, you can manage orders, shipping, and payments from anywhere. Sign up for a one-dollar-per-month trial period at https://shopify.com/darknet. Learn more about your ad choices. Visit podcastchoices.com/adchoices

    141: The Pig Butcher

    141: The Pig Butcher
    The #1 crime which results in the biggest financial loss is BEC fraud. The #2 crime is pig butchering. Ronnie Tokazowski https://twitter.com/iHeartMalware walks us through this wild world. Sponsors Support for this episode comes from NetSuite. NetSuite gives you visibility and control of your financials, planning, budgeting, and of course - inventory - so you can manage risk, get reliable forecasts, and improve margins. NetSuite helps you identify rising costs, automate your manual business processes, and see where to save money. KNOW your numbers. KNOW your business. And get to KNOW how NetSuite can be the source of truth for your entire company. Visit www.netsuite.com/darknet to learn more. Support for this show comes from Drata. Drata streamlines your SOC 2, ISO 27001, PCI DSS, HIPAA, GDPR & many other compliance frameworks, and provides 24-hour continuous control monitoring so you focus on scaling securely. Listeners of Darknet Diaries can get 10% off Drata and waived implementation fees at drata.com/darknetdiaries. This show is sponsored by Shopify. Shopify is the best place to go to start or grow your online retail business. And running a growing business means getting the insights you need wherever you are. With Shopify’s single dashboard, you can manage orders, shipping, and payments from anywhere. Sign up for a one-dollar-per-month trial period at https://shopify.com/darknet. Learn more about your ad choices. Visit podcastchoices.com/adchoices

    Related Episodes

    CBD Benifits for COVID-19?

    CBD Benifits for COVID-19?
    Stuart Tomc works in the Regulatory Department of CV Sciences as Vice President of Science, Regulation and Education. New interests in the benefits of marijuana have led us to explore the benefits of cannabinoids. Scientists discovered that cannabinoids are imuno and neuromodulatory. They modulate the immune system in a way that is different from global steroids. Cannabinoids to not block things they way that steroids to, instead, they modulate the hyperactive immune response and it may have some anti-inflammatory effects. This has treatment potential on virulent conditions.
    Find more at: https://w420radionetwork.com/s2-e23-medical-delivery-methods-2020-sales-increase-cbd-benifits-for-covid-19-virtual-conferencing/

    0019 Ryder Jeanes, Canntilever

    0019 Ryder Jeanes, Canntilever

     

    3 takeaways:

    1. What is the state of cannabis today and how is the west coast leading the way?
    1. What can retailers do to embrace the changing tide?
    1. What are some of the expanding applications of cannabis?

     

    Speaker Bio:

    Ryder Jeanes has unparalleled expertise in the intersection of cannabis and retail having spent decades on the retail side. He is also a member of the very first cannabis hedge fund. Through his experience in the industry, Ryder founded Canntilever.

    Canntilever operates at the intersection of real estate, capital markets and the global cannabis industry. The main objective of Canntilever is providing strategies and solutions to the complex and growing cannabis industry.