DNMLinks.org is Serving Reverse Proxies, Not Mirrors | Major Phishing Risk : ImpactMarket | Torhoo darknet markets
We’ve come across a site: https://dnmlinks.org/ that's hosting multiple marketplace URLs, similar to what tor.run and tor.watch do. But here’s the catch the links on this site aren’t just simple mirrors. They’re acting as reverse proxies, which means they forward traffic to real markets without replicating the whole site. Instead, they intercept and route all your traffic directly to the legit backend.
Sounds harmless? It’s not. A reverse proxy can see everything you send usernames, passwords, messages all in plain text.
Shoutout to
https://torhoo.cc/go.php?u=TDNVdmNYVmhjbXM9# for catching this we were already drafting a warning when his post went up. Crazy timing. These proxy based attacks are sneaky and hard to detect, especially when the setup closely mimics legit infrastructure. Props to
https://torhoo.cc/go.php?u=TDNVdmFHVnJkRzl5# as well, who’s been fighting phishers with his self signed cert detection method.
We’re actively working on a security update to help guard against these stealthy but low effort attack vectors. In the meantime, protect yourself:
- Enable 2FA on your accounts
- Add your PGP key to your profile
That’s your best defense for now. Stay sharp and stay safe.
We have researched and found multiple market phishing links there, we are not the only ones!
https://torhoo.cc/go.php?u=TDJRdllXSmhZM1Z6YldGeWEyVjA=# -
https://torhoo.cc/go.php?u=TDNVdlZtbDBidz09#
https://torhoo.cc/go.php?u=TDJRdlFteGhZMnRQY0hNPQ==# -
https://torhoo.cc/go.php?u=TDNVdlFteGhZMnREWld4cw==#
https://torhoo.cc/go.php?u=TDJRdmIyMWxaMkU9# -
https://torhoo.cc/go.php?u=TDNVdmNYVmhjbXM9#
https://torhoo.cc/go.php?u=TDJRdmFXMXdZV04wYldGeWEyVjA=# -
https://torhoo.cc/go.php?u=TDNVdlNXMXdZV04wVFdGeWEyVjA=#
https://torhoo.cc/go.php?u=TDJRdlJHRnlhMDFoZEhSbGNrMWhjbXRsZEE9PQ==# -
https://torhoo.cc/go.php?u=TDNVdmNYVmhjMkZ5TVE9PQ==#
https://torhoo.cc/go.php?u=TDJRdlJXeDVjMmwxYlUxaGNtdGxkQT09# -
https://torhoo.cc/go.php?u=TDNVdlJXeDVjMmwxYlUxaGNtdGxkQT09#
https://torhoo.cc/go.php?u=TDJRdmNISnBiV1Z0WVhKclpYUT0=# -
https://torhoo.cc/go.php?u=TDNVdllXTmw=#
https://torhoo.cc/go.php?u=TDJRdlpXMWhjblE9# -
https://torhoo.cc/go.php?u=TDNVdlpXMWZZbXgxWlE9PQ==#
https://torhoo.cc/go.php?u=TDJRdlRXRnljMDFoY210bGRDOD0=# -
https://torhoo.cc/go.php?u=TDNVdlQyeGxaMDFoY25NPQ==#
https://torhoo.cc/go.php?u=TDJRdlFYZGhlbTl1VFdGeWEyVjA=# -
https://torhoo.cc/go.php?u=TDNVdlFYZGhlbTl1#
This is a years old technique.