Anonymous journalist researching Tor: the uncensored internet. Privacy is a human right. torproject.org

darkfailllnkf4vf.onion
Joined October 2018
We got our domain dark.fail back!! Massive THANK YOU to @njal_la, @brokep, and all who supported us over the past four days while a phisher hijacked and operated our clearnet site. Rebuilding carefully.
14
52
5
411
dark.fail retweeted
Please note: @brokep was especially correct on this matter. Without all of the public pressure, its likely nothing would have been fixed, IMO. Pressure works.
Replying to @brokep
Now, the phishing attack is still ongoing, and if enough people would push @Namecheap and their @NamecheapCEO on social media, maybe they will help @DarkDotFail out and get their domain back. Thanks.
Show this thread
1
9
0
45
Victims of my domain hijacking: Don't fret, @Namecheap did not consider it a phishing attack because it did not use HTML input fields. So they hosted a phishing site on my domain for four days.
FINALLY!! From @Namecheap: "Please be informed that the dark.fail domain was disabled. We would like to note that the website could not be treated as a phishing one because it did not contain fields to enter sensitive data." Now we just need them to send it back.
7
10
1
78
dark.fail retweeted
In an interesting attack, scammer was able to take over domains by presenting a registrar w/ fake court order. Used same language as a real court order. Scammer then used that control to push dark web market phishing sites, stealing BTC vice.com/en/article/qj8833/d…
9
105
15
195
Show this thread
Who are the victims in a well-moderated marketplace?
12
2
1
66
At what point does a marketplace operator become complicit in forgeries, unsafe items? Are Craigslist, Amazon, Alibaba well-moderated?
6
1
0
37
dark.fail retweeted
Maybe you heard that the domain dark.fail (@DarkDotFail ) got hijacked. Here's the story on how it happened. A thread! (I've pieced together the data I have so I might have some small errors in this thread, FYI.)
15
323
81
668
Show this thread
ALERT: Aurora Market exit scammed.
14
34
5
293
Shout out to Dread for still being the most valuable resource around. Thank you to all admins, mods for quickly warning people about Darknetlive and dark.fail's domain takeovers the past four days. Long live Dread!
2
5
0
80
Signed proof that I have regained access to this Twitter following a domain hijack that allowed an attacker to receive emails to "hello@dark.fail" but not to bypass 2FA. raw.githubusercontent.com/Da…
3
11
2
90
Follow my Mastodon. mastodon.social/@darkdotfail The attacker locked me out of Twitter and Reddit but was unable to get past 2FA. I was able to continue tweeting with Buffer but did not want to announce this vector to the attacker. I was unable to remove dark[.]fail from my profile.
1
3
0
35
Namecheap is still allowing a phishing site to be hosted on my hijacked domain "dark[.]fail". They will not remove the nameservers. This negligence is costing people hundreds of thousands per day. Ticket PVZ-490-11596 do the right thing. @Namecheap
26
39
8
291
This is appalling. Yesterday Darknetlive's domain was hijacked alongside mine. Now the thief is trying to sell darknetlive].]com via Epik. Stop this, @EpikDotCom @robmonster @bitmitigate
6
18
4
122
ALERT: "dark[.]fail" is still hijacked by a phisher. Each link appears to be a real site, but MITM proxies your browsing, allowing the attacker to steal your cryptocurrency and passwords. I estimate people are losing least 250k Euro per day. Only trust my .onion, PGP verify.
13
84
7
297
Netlify is anti-privacy. Protonmail users cannot register even with linked Github, payment information. Because wanting secure email must mean you're a criminal, right @Netlify?
6
12
0
128
Njalla and Namecheap are working to get my domain back. There's no indication that Njalla was compromised. Thank you for friendly service @njal_la please publish an incident report after. Your users should be informed of this attack vector since you are a reseller.
2
9
1
92
Njalla: "From what we can see, the domain has been transferred by the registrar to another account at the registrar, and then to Namecheap. We've asked the registrar in question (Tucows) to explain what has happened but have not yet gotten any information back." @Tucows
6
11
3
91