Tor is considered one of the safest networks by masking part of the traffic, which is why many users use it to protect their privacy, even though it is not as secure as it may seem. Now and as reported in Techradar, the network is suffering a series of attacks that is allowing a group of hackers control some of the Tor traffic and not with good intentions precisely.
And it is that although the attacks have been intermittent and continue to this day according to Nusenu, it was in May when the biggest attack of all occurred, when the pirates who were carrying out this controlled nearly 380 outbound Tor servers, an extremely high number that implied that, at that time, network users had a one in four chance that their traffic was funneled through a malicious server.
Different attacks on Tor in 2020 using the described method.
The modus operandi to control the traffic is to change the HTTPS headers to HTTP and from there control the traffic that was diverted by one of the 380 infected Tor servers, so that the hackers had access to the traffic of the users and could control what that passed through those servers:
“They perform man-in-the-middle attacks on Tor users by manipulating traffic as it flows through their outbound relays. They (selectively) remove redirects from HTPP to HTTPS to gain full access to HTTP traffic. unencrypted and without generating TLS certificate warnings. “
It seems that, in any case, the idea behind this control of Tor servers is focused on the theft of Bitcoin, although the real extent of the damage it could have caused is unknown The control of traffic in Maya, as the investigation points out, the pirates changed the headers to HTTP selectively, so we could be facing very specific selective attacks.
The main problem is that Tor does not have the ability to verify on a large scale the legitimate identity of the operators of its network, so today they have no way to solve the problem globally.
The article Hackers are controlling part of Tor traffic to steal Bitcoin was published in Hypertext.