We all know of the theoretical attacks of the global passive adversary. We also know of exploits "Network Investigative Techniques" that they used in the playpen bust. But lately I am seeing more court cases popping up where users have been de-anonymized by LE, where the governments explicitly deny that it was an NIT, usually they will just say nothing if it was.. they can omit in court but can't really lie. I'm also not referring to opsec failures per se like getting busted by drug shipments, but techniques that are in use by governments around the world in the last year to two years that pop people browsing on Tor.
Is anyone aware of more recent, novel techniques for user de-anonymization, say where LE has compromised the onion service? Are we living in the age of the global passive adversary? Do governments own a significant enough proportion of entry and exit nodes?
Is anyone aware of more recent, novel techniques for user de-anonymization, say where LE has compromised the onion service? Are we living in the age of the global passive adversary? Do governments own a significant enough proportion of entry and exit nodes?