Deep Dot Web Surfacing The News From The DeepWeb
Source: http://pastebin.com/raw.php?i=9spTATw6
Posted By: Gwern (Gwern.net)
Following this: http://www.reddit.com/r/SilkRoad/comments/1ptd6b/precommitment_proof_of_knowledge_about_a/
** Note: Text formatting was edited for easier reading – so if you want to verify the PGP signature, check with the Pastebin link.
—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512
On 2 November 2013, I was contacted on IRC by a pseudonymous chatter, “ananonymous security hobbyist”. He said he had some information for me if I would swear to keep it secret. I agreed as long as it didn’t involve violence like
hitmen.
He had been impressed by [my bet against Sheep &BMR] (http://www.reddit.com/r/SilkRoad/comments/1pko9y/the_bet_bmr_and_sheep_to_die_in_a_year/) and agreed with me that the official Sheep story aboutsheepmarketplace.com was too stupid for words, and wanted to share the info with me.
He then told me he had just finished researching Sheep Marketplace and was highly confident that the operator was a Czech programmer by the name of “Tomáš Jiřikovský”, andfurther, earlier that day he had mailed off his results to the FBI. (He also claimed credit for the BMR & PBF leaks.)
After reading through his results, checking some of the links to see if they were as described, agreeing with him that Tomas matches the profile for the Sheep operator uncannily well, and reflecting how stupid I was to not look harder at sheepmarketplace.com because as soon as you see the forum posts where Tomas complains about the problems of running a Bitcoin-using hidden service it’s completely obvious that Tomas=Sheep, I suggested he contact Tomas. He declined, saying he didn’t want to spook Tomas (he is not a big fan of drugs), although he agreed I could release the results within 7 months.
The most I managed to get out of him was permission to [post a cryptographic hash precommitment](http://www.reddit.com/r/SilkRoad/comments/1ptd6b/precommitment_proof_of_knowledge_about_a/):
$ echo ‘Sheep Marketplace was founded and run by Tomáš Jiřikovský (random nonce: 19093)’ | sha512sum 43a4c3b7d0a0654e1919ad6e7cbfa6f8d41bcce8f1320fbe511b6d7c38609ce5a2d39328e02e9777b3391529
87ea02b3f8adb57d84377fa7ccb708658b7d2edc
I was as precise as I could be at the time; saying it was a precommitment to Tomas’s identity would have clearly breached the agreement.
Anyway, I took his notes, made copies of all the webpages linked in, and
prepared a single compilation in MAFF format:
https://dl.dropboxusercontent.com/u/182368464/2013-11-03-sheepmarketplace-doxxing.maff
The basic overview of the findings:
- Tomas owns the hosting service for the sheepmarketplace.com VPS server. There
were very few domains hosted there as well, and he controlled several of them. - The site itself seemed to be very closely connected to SMP, using the same
basic technologies and possibly a non-public API - The official excuse does not wash as sheepmarketplace.com was set up not long after
SMP itself - Tomas is the earliest known promoter of SMP (1 February 2013), and recommened SMP &
BMR over Silk Road (11 April 2013) - Tomas is a C++ QT Nette Framework Czech developer who runs Ubuntu, exactly like the
SMP developer - Tomas has complained about the memory demand of
bitcoindon a VPS server, and discussed
the difficulties of functionality like email from hidden services - Tomas or his girlfriend are active users of Tor, as evidenced by screenshots of their
computer - it’s not clear what Tomas’s current job is 9. but it is clear that as of October, he was working on an e-commerce site which was having problems with buggy accounting of deposits
- Tomas posted a .htaccess file which has the same (buggy) functionality as that of SMP
- He is an accused Bitcoin scammer
A few of these could be explained as coincidence. But all of them? At this point, I would rate Tomas as >75% likely to be involved with SMP in some fashion.
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1.4.15 (GNU/Linux)
iEYEAREKAAYFAlKaXN8ACgkQvpDo5Pfl1oJ+HwCgnQmvBZFTHkzDEHzayEmrTnjB
d+oAnjK0a0UFDwg+wAvkDxsjer6w8rXl
=tYBY
—–END PGP SIGNATURE—–
Stealling 40 Million from people involved with drugs… “Tomáš Jiřikovský” whether he stole it or not, his name being thrown about is good enough for Mexican cartels to hunt down him and anyone he knows…. I wish him the best of luck surviving.
I don’t. I’ve never used tor, never got scammed in any way IRL, but he had knew the danger when he set up SMP. Probably he will be dead in a week or so
He’s in eastern europe, P. He has plenty of problems and will certainly have people hunting him down, but I it’s not mexican cartels he has to worry about.
Vendors who end up short to cartels because of this will be on the hook themselves for the debt; the cartels don’t give a shit about whatever weird darknet site they lost the money to. They supply the drugs and get paid, that’s it.
Here are some notes on the data dump, if nothing else it’s a better starting point to trawl through the evidence: http://pastebin.com/raw.php?i=ZFS1Jdmn
Didn’t understand why the pastebin link? its the same info as we posted on this article and in this:
http://www.deepdotweb.com/2013/11/30/sheep-owner-just-got-doxxed/
Or am i missing something?
Yes, same info, I just thought a summary of the 80+ pages included might be useful to someone also planning to look through them — I found Gwern’s “basic overview” too lacking in specifics to be useful.
That said, I only posted it here because the thread I was originally planning to post it in was deleted and I didn’t want to waste the work.
Well the guy who posted this info on Tomas J. probably will have some of the blood on his hands.
It is a stupid thing to do, since it is not proved that he is behind this scam, or even if he is the admin of the website.