I ordered from Hansa Monday. My story

I'm a small time buyer. Strictly personal use. Cannabis and cannabis concentrates. I buy from US vendors as I live in USA.

When AB went down I lost out on money in escrow there. After them I went to CGMC and spent too much for some really top shelf concentrates.

Then Hansa opened registrations and I was in within a few hours. I made a small order and was really pleased with hansa and how they handled money.

Thursday at lunch I had the same experience many of you did. I freaked. Had my wife destroy my USB stick and password paper (I know, better OpSec for future).

I came home and she had cut the paper into pieces and boiled it and the USB stick. Then left them on the stove. You could have dumped it out and put the pieces back together SMH. I burned everything.

We figure we are out the money. Not the end of the world. I hit up my local dealer and hes still holding so Im good for now.

We put the kids down, go out and dab it up then watch TV. I go to the kitchen around 8pm and a package is on my steps.

Fuck me Fuck me Fuck me Fuck me.

I let it sit there. I'm not touching shit. And I'm high as a fucking kite.

By ten the wife and I figure, fuck it. Lets get the package. If we are fucked lets get it over with.

Everything looked normal. Opened it up and it was exactly what I ordered. Really good quality too for the price. Hopefully I can find the vendor somewhere else.

Here is how I know I am safe. And most of you are too. I used the check box on Hansa to encrypt using the Vendors PGP. And then Sent Bitcoin to the vendor. I did not use Multisig because he was rated 10 and was basically as perfect vendor.

And he came through. Because Law Enforcement is not a magical entity. It is made up of humans like you and me. They only have so many resources. I bet most of the focus was on Opoids and weapons and shit. Not weed. And what sources do we have that prove they were in control for 27 days? Just one. LE. And they lie all the time to confuse us.

So stop worrying too much. Use the opportunity to get better OpSec. I know I will.


Comments


[40 Points] jaks9000:

I used the check box on Hansa to encrypt using the Vendors PGP.

fucking idiot. You need your own PGP key to run 2fa. Why not simply encrypt it yourself since u already have the PGP tool instead of typing your FULL ADDRESS over their network? You're not fine, they know where you live and ARE running surveillance.

You kinda sound like a cop trying to throw us off honestly. You stated WHAT YOU BOUGHT and when it came in... all your personal details. Nobody in their right mind would do that.


[27 Points] OpOnymousSurvivor:

WHY the fuck do you need to inform the world? do what you need to do to remain safe and keep quiet


[9 Points] UnKnOwN8733:

So you used the auto encrypt feature huh?


[8 Points] candylovr:

Here is how I know I am safe. And most of you are too. I used the check box on Hansa to encrypt using the Vendors PGP

Mate, you do realize LE most definitely compromised that auto encrypt feature, right? They claimed to have collected tens of thousands of PGP encrypted messages, which aren't any good if they don't own the private keys. This is a clear sign that either they changed the code to encrypt messages with the vendors PGP but also store them in clear text, or outright replaced the vendors key with their own.

I'm not saying you should freak out, but it's very likely your address is compromised. Maybe consider contacting a lawyer, just in case.


[8 Points] penguinmixer:

OP, do you mean you typed clear text into the Hansa web site and trusted that the site would encrypt your message with the vendor's PGP key? Bad news: LE modified the code of the site so that your text was captured for them to see prior to encryption. Always encrypt using a tool on your own computer. Never trust a web site to encrypt for you.


[6 Points] chrisname:

We put the kids down

Jesus, dude, don't you think that's a bit drastic? What was in the package, pentobarbital?


[6 Points] zaaad:

I've managed to watch SR 1.0, 2.0, BMR, Sheep, and now this.

Everything is due to a link back to poor opsec. I'm sure we all have some kind of bread crumbs.

Constantly erasing and reformatting, constantly changing usernames and passwords, always writing things down instead of using the computer to copy and paste, and typing things out by hand every time are basic modes of operation that one should exercise.

Change in pattern isn't perfect but it's helpful. 4096-bit encryption keys are suggested.

Check out "Operation Shitstorm" by MasterPirate on pastebin for some excellent advice on encrypting and securing your hardware. The info is a bit dated, but still relevant nonetheless.


[3 Points] kyousaya4life:

I agree with everyone else that you fucked up massively by using automatic PGP, and LE definitely has your name and address and knows precisely what you ordered. That being said, unless your definition of "personal use" is several ounces (or whatever the equivalent of several ounces is in concentrates), I wouldn't expect a visit from the cops.

If you want to be extra careful, it might be a good idea to clean house, but they've got hundreds of vendors and high-level buyers to take care of before moving on to low-level buyers, and building a federal case against someone for a few grams of plant matter is not worth their resources.

Try not to fuck up in the future, PGP isn't safe unless you do it yourself on your own computer.


[3 Points] genericuser14228:

I appreciate your post, and I understand your logic. Honestly, I'm in a very similar position. My first theory was that the package would have been siezed if LE was aware of who you are. Here's a new element to your scenario: what if they do know your identity (especially since you did the auto-PGP) and are simply monitoring you now instead of CD/warranting? Yes, you can bank on being a small fish, but I'm wanting to see arguments against all of us not considering our addresses burnt? In the AMA with the lawyer they said there is an element about it being a reasonable timeframe. Honestly, with such a large volumeof data for them to go through on hansa, I don't think they'd coordinate that level of CD and tracking of everything overnight from the takedown. They likely would just flag you, and if they really wanted you do a CD in the future. Again, should we consider our addresses burnt? I think this is a key element to discuss especially in a world of DD.


[2 Points] lee524x:

This whole post is sketchy as hell....look at his username it seems like bullshit and the fact he's not responding to shit. Something isn't right here


[1 Points] BananasAndBlowMe:

I just got a pack from Hansa ordered tuesday. Ain't worried about shit. I used PGP though.


[1 Points] RedPillRobin:

So freaking lame kid. You don't have to do shit no feds give a flying fuck about personal use pot. They going to send agents to raid your house for a ticketable offense!!! You attribute more power than they have. But they accomplished there goal which was deter you from using so they win.


[0 Points] Itcoolincrisis:

Can confirm similar situation for me and I fell for AE laziness. Glad we both made it. Lesson learned.


[0 Points] dnmthrowawayfoe:

The best thing you can do is move the fuck away from that house. Auto PGP, are you kidding me that you arent even scared a bit? You got your pack doesnt mean your address is already being sent to the police station nearest to you.