Site Feature: Dark Clouds/saysamaim

So, a reader contacted me recently and asked if I would check out their site(s), which I did. They have both a clearnet site and a couple of Tor hidden services.

The clearnet site is called saysamaim, and seems to be a sort of tribute to all things “darknet”:

saysamaiam

On the landing page is a sort of “definition” of the darknet:

“Most people like us confused about the term like Dark net or Deep Web[sic]! It is a big part of the internet that can’t be found or indexed by search engines such as Google, Bing, Yahoo, and DuckDuckGo. For example, your bank account page is also part of the dark net sites. On the other side anything you can see in the search results, that s [sic] called Surface Web. Darknet sites contain weird URLs and also [sic] known as .onion sites (Hidden services sites) [.] Dark marketplaces sale [sic] all kinds of legal and illicit goods anonymously for other currencies such as Bitcoins. When companies are hacked and their data is stolen, that stolen data [is] often used for sale on the so-called Darknet.”

I’m not certain, but this sounds like something I wrote at one point online; if so, thanks for paraphrasing me! I must make a few corrections, however – your bank account page is in the “deep web,” not the darknet, per se. If a page is indexed by search engines, it’s on the surface web, as the site says. And as I’ve mentioned on this blog before, .onion sites are one example of “dark web” URLs (on Tor, at least).

Here’s one of the next-gen onion URLs, for instance: http://occgshn6gz4je57wyhpijni7waod6yxpxwihjdxjwrnpjtbayliei2id.onion/ It’s a site called Cyberia.

cyberia_edited

Anyhow, I don’t fault people for not being native English speakers, but I hate the spread of misinformation about the dark web. Some of this is unintentional, as I believe many of the technical aspects of darknet software can be hard to understand.

On other parts of the site are a “darknet guide,” if you will, a contact form, and a list of hacking tools. In addition, there’s an about page, and copies of 973-eht-namuh-973.com and Joy of Satan, two sites which are often referred to as being part of the “dark web,” but aren’t.

973-eht-namuh

joyofsatan

This same group also runs two Tor hidden services, called Dark Street and Dark CloudNet.

 

dark_street_edited2

 

Both of these are forums, more or less. They seem to revolve around the typical kinds of activity you would expect on Tor: carding, drugs, etc. Because I’m new to the forums, I have no idea if any of it is legit or not. Based on my experience with the dark web over the past two years, I tend to approach these kinds of things with a healthy degree of skepticism.

That’s not to say that the forums don’t look cool; I thought the format worked very well. Whoever programmed them used MyBB software, which is pretty tried-and-true for that purpose, as you may know.

One thing that’s intriguing about Dark Street is that certain sections are “locked,” i.e. you need a password to access them. See if you can figure out what that is!

In any case, the forums are rather similar to other carding/hacking forums I’ve seen, but they could use some more traffic. Want to check them out, readers? Click the links.

They’re real…I promise.

 

 

 

Advertisements

Does Experian Really Monitor the Dark Web?

If the subject of the dark web interests you, you may have seen Experian’s series of “auction” commercials, like this one: Experian’s Auction Commercial – Dark Web Surveillance

experian_darkweb

I think this would qualify as what they refer to as “FUD” on /r/deepweb – manipulation of the less tech-savvy public through fear, uncertainty, and doubt. While the article on their blog, entitled “What Should You Know About The Dark Web?”, is somewhat accurate, I still think it’s exaggerated to scare people into subscribing to their “monitoring” service.

The reason that I’m skeptical of their claims is that it’s very difficult to find one person’s specific information on the dark web, whether it be bank account information, social security numbers, or medical data. I know from personal experience that these types of data are sold and shared on the dark web (Tor in particular), but I could also see how it would be tricky to hunt down any one set of data.

As I’ve said in previous posts, the “dark web” isn’t just one network, it’s many: Tor, I2P, Freenet, GNUnet, and ZeroNet are just a few. There are also numerous carding forums on the clearnet, which may surprise you – here’s a small sampling:

Prvtzone – also on Tor at prvtzone7mq377pw.onion

prvtzone

Carding Forum

cardingforum

Altenen Carding Forum

altenen

Even if they’re designed as scams (on the buyer end), the point is that they aren’t just on the dark web, and whatever technology they’re using would have to scour multiple networks to be able to find someone’s specific data.

The funny part about all this is that as a result of Experian claiming to monitor the dark web, a vendor in 2016 claimed to have hacked Experian’s database and sold their data on the dark web! How’s that for irony? Vendor claims to sell millions of Experian and Whois accounts on Dark Web

Now, correct me if I’m wrong – if someone actually has been successful in using this service, then…that’s great! I just tend to raise an eyebrow at claims like this.

There’s another company by the name of OWL Cybersecurity claiming to do the same thing, through a database of what they call DARKINT.

owl_cybersecurity_darkint.png

Feel free to use either of these if you really want to, but what I would do is research their claims, and learn about the technology that they use to “scan” the dark web – does it really gather useful data?

Then you can determine if you really need this service or not.

Besides…that owl is creepy as hell.