Anonymous surfing with Tor - a find for a spy
Some time ago, a message appeared that the passwords for the mail accounts of some diplomats, and in particular Russian ones, appeared in the public domain. It seems to be nothing strange - they break everyone and everyone. But the hacking method turned out to be somewhat unexpected for me.
It turns out that a certain Dan Egerstad installed several servers for the Tor anonymous surfing network, and simply analyzed traffic between end servers and users, such a peculiar sniffer. He posted the collected passwords in the public domain, and, apparently, he was not the first to receive passwords in this way.
The danger of using anonymous proxies seemed to have been warned for a long time, but this case clearly showed that anonymity - anonymity is not from (not for) everyone ...
Maybe Tor is a large-scale conspiracy of hackers?
Links:
Diplomat Account Thief Interrogated by Police
Hacking Dozens of Diplomats Passwords: Details
Tor Project
What does Google know about this?
It turns out that a certain Dan Egerstad installed several servers for the Tor anonymous surfing network, and simply analyzed traffic between end servers and users, such a peculiar sniffer. He posted the collected passwords in the public domain, and, apparently, he was not the first to receive passwords in this way.
The danger of using anonymous proxies seemed to have been warned for a long time, but this case clearly showed that anonymity - anonymity is not from (not for) everyone ...
Maybe Tor is a large-scale conspiracy of hackers?
Links:
Diplomat Account Thief Interrogated by Police
Hacking Dozens of Diplomats Passwords: Details
Tor Project
What does Google know about this?