Using a compromised market?

I seen a post a long time ago that even if a market was compromised or LE controlled that you could still actually order on it with proper OSPEC and still be safe. How much truth is there to this?

I think it goes without saying if your vendor is comprised (LE has there PGP keys) then you are pretty much SOL as you are sending your order directly to them. If you use tail, Tor, and always SELF encrypt your shit should you in theory stay safe? I'm guessing they could still track your Bitcoin but it would still have to be worth there time to do so (high volume orders).


Comments


[11 Points] Danny-Fuckin-Dyer:

as a small time buyer if you use correct opsec you are safe.

use monero and no one can trace you payments either


[6 Points] wombat2combat:

I seen a post a long time ago that even if a market was compromised or LE controlled that you could still actually order on it with proper OSPEC and still be safe. How much truth is there to this?

too much risk. law enforcement can track btc payments, steal your btc, replace vendor keys, get you to solve 2fa messages for other dnms, . . .


[3 Points] FreshestNuts:

If you are buying a small amount or even a large amount you can still buy and be fine. Of course, knowing half the intelligence on this subreddit, most people are 16-20 and order to their parent's homes or an apartment they live at in their own name (which vendor's prefer). But with a compromised market this should not be the option, even with an non-compromised market you should always ship to drops. I could explain how I go about getting drops but I care too much about my dick size to help anyone out ;)


[2 Points] neGXh3id:

This is absolutely true. The police fully compromised a group of child pedophiles called YardBird for 15 months and managed to arrest less than a third of them because of how good their opsec was. I learned about it in a book called Operational Anonymization.

I think the most important points it states are that the buyer needs to use PGP to encrypt messages with sensitive informatin and NOT rely on the encrypt button as a contolled market could be manipulated to disable that button. The buyer ad vendor needs to use proper deposit and withdrawl techniques to not have funds traced back to them. This looks like:

P - Personal wallet, T - Tumbler, A# - is an anonymous electum wallet in tails, M - Market.

P > A1 > T > A2 > M - This is how to get money from personal to market

M > A3 > T > A4 > P - This is how to get money from market to personal


[1 Points] treedoor1:

LE are only after Vendors and those running the markets. If you are just a customer you are probably safe. Unless you do something really stupid like not using encryption or if you are unlucky to do business with a vendor that is possibly compromised.