Home » Featured » 5.12.17 Dark Web and Cybercrime Roundup
Click Here To Hide Tor

5.12.17 Dark Web and Cybercrime Roundup

Germany: Dutch Dark Web Drug Dealer Arrested with Drugs worth $3.5 million

A joint press conference by Wuppertal police and the Wuppertal Prosecutor’s Office revealed that a special taskforce caught a “large-scale” darknet drug trafficker. The raid on all three of the suspect’s properties yielded more than 200 kilograms of drugs (some reports claim up to 400 kilograms). He was the leader of an international drug trafficking group, the police announced.

The Dutchman shipped packages around the globe. From his home in Wuppertal, the 29-year-old husband and father shipped drugs to buyers in Canada, the United States, Europe, Australia, Thailand, and Singapore. He had amassed wealth too. The drugs alone were valued at $3.5 million, the police said. According to the statement from the Wuppertal Prosecutor’s Office, the massive pile of drugs consisted of amphetamine, ecstasy, cannabis, THC edibles, and cocaine.

His wife and child had no idea that the man had been selling drugs through the internet; he had rented separate apartments to use as drug storage and drug processing facilities. The investigation in ongoing and police hope to catch the buyers and the dealer’s supplier.


USYD Student Busted for Ordering Drugs to Redistribute

A University of Sydney student ordered illegal substances from a vendor on the darknet with intent to distribute, Australian police revealed. Either international customs or Australia’s Border Force intercepted the package prior to delivery and alerted the local Newtown police. The Newtown police, in turn, arrested the 24-year-old USTD student upon package arrival. They charged him with drug possession, distribution, and replica firearm possession.

The student lived in Camperdown at a University of Sydney residence. Newtown Local Area Command officers raided the house and found more than what the package had contained. They reportedly seized 15 grams of marijuana; 21 grams of Xanax; 16 grams of MDMA; some LSD tabs; and a replica firearm. A local reporter spoke with Newtown authorities who confirmed that an investigation was ongoing. DeepDotWeb

An Alleged Hacker Claimed to have Breached Aero Market Servers and Doxed Customers

Aero Marketplace: A hacking entity under the username “ChUcKyNbUcKy” claimed, repeatedly, to have successfully hacked the Aero Market Bitcoin wallet on August 8. They claim they had previously rooted the host server and acquired admin privileges. It got even better; they claimed they had compromised the market’s login system and had the ability to change the PGP keys and pins of users. They last month, they successfully bypassed 2fa login, they wrote in a post titled “DOX DOX DOX DOX DOX DOX DOX DOX DOX DOX DOX DOX DOX DOX DOX DOX DOX :).”

The first day we started redirecting the wallet system (Withdraws and deposits) to various master wallets, we made around 300k and we had been working on it for about half the day.”

ChUcKyNbUcKy claimed that announcements by Aero staff have been completely false. The market staff apparently found and used the hacker’s method of stealing Bitcoin successfully. They also “spoofed” BTC and XMR wallet keys for making withdrawals. And possibly most importantly, they filled the front page of the Aero market forums up with full names and addresses of a massive number of Aero Market buyers. The doxxes came from customers of the following vendors: Instangram, GonePostal, TheNotorious, TranquilTreats, El_Chapo, StealthPharmacy, SouthernWonderz, RemedyPlus, NightPeople, UK2UK, Pellendose, DGSLabz.

However, ChUcKyNbUcKy had another agenda entirely. We checked the addresses and the majority of the “doxed” customers did not exist. Nor did their home addresses. The post did cause the Aero Market forum moderator to come out and post on Reddit though, making it even clearer that the admins vanished for good.

Aero Market Forum/Reddit Mod Posted “December 2 Update”

The post resembled the post by customer support staff of several markets that either exited or got taken down by law enforcement. We last saw this with Sam Culper from TradeRoute when he still believed TradeRoute staff would be coming back online. TradeRoute did not come back online. The admins of the market left him high and dry and in the dark. TrappyPandora/TrappyAB and Big Muscles both told the community that Alphabay would be coming back but did not know when. And then Alphabay never returned. Outlaw Market “exited” and left a support moderator to deal with the fallout. Oasis may have pulled the same stunt.

The general consensus is that Aero will not be returning. At least as “Aero Market.”

From AeroMarket:

Last contact with myself from Admins was Sunday 26th November. It was stated that they were aware of some withdrawals failing to process and it will be looked into and staff were given limited access to an old version of the help desk, just so tickets could be answered temporarily whilst new fixes were added.”


Monday 27th November help desk went down as it seems it was only configured correctly on the aerogucked prefix url, so once the DDOS targetted that (which was being used as our new main URL) support tickets were then stuck once again so the queue was only marginaly cleared at that point.”

Aero Market admins exited and left support staff to handle the fallout. Reddit

British Teen Bought Car Bomb from the Darknet

In Wolverhampton, a successful investigation by the United Kingdom’s National Crime Agency’s Armed Operations Unit led to the conviction of a 19-year-old British man for buying explosives on the darknet. The NCA wrote that had planned to use the explosive device to destroy a vehicle. The court found the 19-year-old guilty of “possessing an explosive substance with intent to endanger life or cause serious injury.”

The NCA intercepted the explosive device before the defendant ever managed to get his hands on it. When they intercepted the package, they replaced the real bomb with a dummy. They then performed a controlled delivery. Officers arrested the primary suspect, an 18-year-old woman, and a 45-year-old woman during the raid. They later let the two women go without charges. DeepDotWeb

White Shadow Clearnet Website, Twitter Account, Google+, Facebook

It is not like the sites had been hidden. In fact, the White Shadow Market admin obviously promoted the clearnet markers that pointed to the fake Russian marketplace. However, people laughed at Alpha02 for creating Alphabay.me. And Hansa for creating their version. And just about every other market with a clearnet presense of any sort, possibly minus official accounts on the darknetmarkets subreddit. But White Shadow also has a Twitter account, a Facebook account, a Pinterest account, etc.

International Credit Card Cloning Group Arrested

Hyderabad, India: A joint operation between a Special Ops Team and a Cyber Crime taskforce led to the arrest of a group of carders throughout India. Hyderabad police busted five suspected fraudsters. Local news coverage revealed that the group allegedly cloned the credit card information of foreigners from the United States, the United Kingdom, and Australia. They then used the stolen cards and caused Rs 30 lakh in fraudulent charges per card.

The suspects ranged from their mid 20s through their mid 40s. Some of the suspects worked in IT or business fields. One was a researcher. “The gang used to purchase data of foreign credit card holders from various websites, including dark web and darknet, and clone the cards before swiping them through POS machines to withdraw money,” said Mahesh M Bhagwat, a Rachakonda Police Commissioner. DeepDotWeb

Leave a Reply

Your email address will not be published. Required fields are marked *


Captcha: *