• catalog3115@lemmy.world
    link
    fedilink
    arrow-up
    13
    ·
    10 months ago

    You don’t hijack a .onion site. You pwn the server which hosts .onion site. Give you full access to site. You hijack .onion because its very secure

      • catnip
        link
        fedilink
        arrow-up
        7
        ·
        10 months ago

        By pwning it. You dont have to find it to pwn it. You just have to be able to send data to it, which everyone can do because whats the point of having a server if noone can interact with it. The attacker just interacts with it in a way that manipulates it to execution attacker controlled code. So for a .onion website for example you find a vulnerability in the websites code and exploit it to make the server the website is running on do what you want.

          • /home/pineapplelover@lemm.ee
            link
            fedilink
            arrow-up
            4
            ·
            10 months ago

            Nah nothing like that. I mean that they’re sharing info to friends willy nilly and some cops got wind of it. That’s kinda what happens to some of the dark web guys who get caught. It’s very rarely something very technical it’s just their own idiocy for reusing emails, transferring funds incorrectly making it traceable, Delivering sus packages all at once to usps

      • catalog3115@lemmy.world
        link
        fedilink
        arrow-up
        4
        ·
        10 months ago

        In simple terms you can’t trace back the server useless the webadmin did some stupidity or vulnerability