this post was submitted on 20 Mar 2024
239 points (100.0% liked)

news

23560 readers
630 users here now

Welcome to c/news! Please read the Hexbear Code of Conduct and remember... we're all comrades here.

Rules:

-- PLEASE KEEP POST TITLES INFORMATIVE --

-- Overly editorialized titles, particularly if they link to opinion pieces, may get your post removed. --

-- All posts must include a link to their source. Screenshots are fine IF you include the link in the post body. --

-- If you are citing a twitter post as news please include not just the twitter.com in your links but also nitter.net (or another Nitter instance). There is also a Firefox extension that can redirect Twitter links to a Nitter instance: https://addons.mozilla.org/en-US/firefox/addon/libredirect/ or archive them as you would any other reactionary source using e.g. https://archive.today/ . Twitter screenshots still need to be sourced or they will be removed --

-- Mass tagging comm moderators across multiple posts like a broken markov chain bot will result in a comm ban--

-- Repeated consecutive posting of reactionary sources, fake news, misleading / outdated news, false alarms over ghoul deaths, and/or shitposts will result in a comm ban.--

-- Neglecting to use content warnings or NSFW when dealing with disturbing content will be removed until in compliance. Users who are consecutively reported due to failing to use content warnings or NSFW tags when commenting on or posting disturbing content will result in the user being banned. --

-- Using April 1st as an excuse to post fake headlines, like the resurrection of Kissinger while he is still fortunately dead, will result in the poster being thrown in the gamer gulag and be sentenced to play and beat trashy mobile games like 'Raid: Shadow Legends' in order to be rehabilitated back into general society. --

founded 4 years ago
MODERATORS
 

On March 10th, several days after Incognito Market was assumed to be shut down or no longer be processing transactions, the site posted a message to its homepage that reads as follows:

”Expecting to hear the last of us yet? We got one final little nasty suprise for y'all. We have accumulated a list of private messages, transaction info and order details over the years. You'll be surprised at the number of people that relied on our "auto-encrypt" functionality. And by the way, your messages and transaction IDs were never actually deleted after the "expiry"...”

”SURPRISE SURPRISE !!! Anyway, if anything were to leak to law enforcement, I guess nobody never slipped up. We'll be publishing the entire dump of 557k orders and 862k crypto transaction IDs at the end of May, whether or not you and your customers' info is on that list is totally up to you. And yes... YES, THIS IS AN EXTORTION !!! As for the buyers, we'll be opening up a whitelist portal for them to remove their records as well in a few weeks.”

”Thank you all for doing business with Incognito Market”

Exit scams are not uncommon on dark web markets, but this one is particularly large and openly threatening compared to most. Incognito Market requires the loading of cryptocurrency to a site-based wallet, which can then be used for in-house transactions only. All cryptocurrency on the site was seized from user’s wallets, estimated to be anywhere from $10 million to $75 million. After seizing the cryptocurrency wallets of all of the marketplace’s users, the site now openly explains that it will publish transactions and chat logs of users who refuse to pay an extortion fee. The fee ranges from $100 to $20,000, a volume based 5 tier buyer/seller classification.

Incognito Market also now has a Payment Status tab, which states ”you can see which vendors care about their customers below.” and lists the some of the market’s largest sellers. Sellers which have allegedly paid the extortion fee to not have their transaction records released are displayed in green, while those who have not yet paid are displayed in red.

Additionally, in a few weeks the site claims it will have a “whitelist portal” which would allow buyers to wipe their transactions and re-encrypt chat records.

Whoever is behind the website must be extremely, extremely confident in their anonymity, already working with government agencies, or both, because a bounty on this person is likely worth millions.

you are viewing a single comment's thread
view the rest of the comments
[–] ReadFanon@hexbear.net 5 points 8 months ago

I think it depends a lot on the country you're in, especially the laws, and the size of your city and who you're buying from and what they sell but personally, in the days when I used to do this stuff, it would always be through a friend, and associate, or a friend of one of those. Some of the people were selling to make ends meet but even they were still small-time and so they were definitely more amateurish than someone who is effectively operating a business and it showed in how they managed their affairs.

Do you really think these little "codes" offer any real deniability? Like a dealer would have to be using the same codes for everyone otherwise there would be no way for them to keep track. So their communications if compromised would be easy enough to decypher. I guess it depends on the local jurisprudence but I feel like after many years of cat n mouse this one is probably covered most places.

If you are busted, it isn't going to save you.

But if they're doing dragnet surveillance of the communication that the dealer is engaged in, they might not be assigning a whole lot of resources to the task - it might just be a matter of getting names and identifying the candidates who are the obvious ones but the other minutiae gets overlooked because it isn't considered worth the cops' time investigating every single contact. (This is where the benefit of small-time dealers comes in - they are almost always going to be sloppier with everything they do but if they aren't moving tons of product then the cops are less likely to treat it like they're busting a ring and more likely they're going to take down a couple of people who are the easiest targets before moving on the supplier. In this situation it's a bit like that adage - you don't have to be the fastest runner to get away from a bear, you just have to be faster than the guy next to you.)

Or if it's something where they need to get a judge's signature before they can target you for surveillance or searches then they likely need to at least have a semblance of cause before they will get the go-ahead and simply messaging to ask if someone is free to catch up isn't likely to meet that standard. If it does happen to get the sign off, there's a chance that you'd be able to contest shit in a courtroom if you did get busted but that all depends on your local laws, how corrupt the judiciary is, how much the police think they can get away with when they lie in their testimony and all of that. But cases do get thrown out due to failure to adhere to the correct process often enough that it can be worth taking a shot at it.

Look, I'm no sovereign citizen and I'm not under the impression that you can just utter the correct magical phrase which was taught to you by a more senior ~~constitutional wizard~~ SovCit and that will dispell any charges against you but at the same time maintaining plausible deniability and covering your tracks is always the best practice. Even if it doesn't prevent you from getting charged, depriving the prosecution of evidence and especially the stuff that clearly implicates you will make their job harder and it can lead to reduced charges, lighter sentencing, and better chances at a suspended sentence or getting parole earlier and stuff like that.

If there was one simple trick to this either everyone would know about it or they'd ban it. But most of the time people come unstuck because of the cumulative effect of a series of bad choices and if you can minimise the bad choices then you mitigate the consequences.

(It just occurred to me since I was typing out this comment and thinking about this Discord server - does discord automatically strip metadata from images? Because if not, goddamn that's another massive risk to go exposung yourself to.)