Tor Browser is designed to protect surfers from potentially prying eyes by encrypting and anonymizing all browser communications through multiple intermediaries – much like anonymizing VPNs.
Similarly, anonymous websites and e-stores on the darknet survive in an alternative Tor network. So in stores where you buy even more fun toys than just a new computer mouse from Logitech.
Of course, in the gray zone relatively anonymous cryptocurrency is usually paid, since stores with illegal drugs, warez of all kinds or filled cocaine instead of cotton are usually PayPal
Fake Russian Tor Browser
So it was only a matter of time before the creators of all types of malicious programs targeted at these online stores. Now on the We Live Security blog, they devote a lot to Isis, who analyzed one of the fake Tor Browsers.
Fake Web False Tor Browser
What did he do? They connect to their server and return additional code based on their current address to process on the page. Isis soon discovered that on several Russian darknet sites in the Tor network, this script downloaded code that falsified the bitcoin payment gateways.
This script was run on every visited website in the modified Tor Browser
This means that when visitors wanted to make a bitcoin transaction changed the code recipient to a bitcoin handbag. Together, they managed to steal less than a million kronor.