Silk Road forums
Discussion => Silk Road discussion => Topic started by: Asylum on December 15, 2012, 05:39 am
-
This is a personal plea from Asylum.
I have been serving the Silk Road community with freebase DMT and 25i-NBOMe for over 6 months.
http://silkroadvb5piz3r.onion/silkroad/user/c454ea9fd9
On Friday my appartment was raided by Czech authorities and I was placed in a holding cell. I cannot explain how, but right now I am free, but not for long. I'm currently on the run from Czech auhtorities with very little money and no place to stay.
This is a plea for the Silk Road community to come together to support my escape from Czech authorities and possibly even my legal defense, if it comes to that.
Please, send any amount to DELETED. Every little bit helps.
I want my life back.
Asylum
-----
The above was an original message from a hacker posing as me.
-
Something isn't right about this......
-
Yeah man you just managed to hop on TOR and have the capability to launder or somehow physically use bitcoins while on the run, all while maintaining good grammar while being in Czechoslovakia.
So yeah, that sounds pretty sketchy.
-
McAfee, is that you? Or are you just channeling him?
-
Vendor Asylum claims to be caught to scam then asks for money to get an even bigger scam?
Asylum, either you are lying or you are fucked. The claim is that your customer's were turned over. That claim was made by your "friend" on your account, I believe? That means... you get no sympathy. You fucked them over. You are on your own.
-
DON'T SEND ANYTHING TO THAT ADDRESS!
My account has been hacked. The fucker got full access to my SR account. He didn't change the forums password, so I was able to recover it now.
Whatever he says or does on SR, disregard it! Don't believe anything he messages or claims there!
I'm working on getting the account back with SR support. Very sorry for any trouble and misunderstanding that fucker causes meanwhile.
-
On the run from authorities,
still able to convert bitcoins to national currency,
hoping to raise money for a legal defense,
posting about it here, guaranteeing any legal defense you may have been able to afford will be completely fucked anyway,
can't today's scammers do a LITTLE better?
-
HEY FUCK OFF U FAKE!!!! Thats pretty shitty u Hacked Asylums account...I know im gonna go make a big order right noww!!! U cN deliver it in 3 days right? sell me all your staash ? 90% off? lol fuck off
-
Lol.
-
DON'T SEND ANYTHING TO THAT ADDRESS!
My account has been hacked. The fucker got full access to my SR account. He didn't change the forums password, so I was able to recover it now.
Whatever he says or does on SR, disregard it! Don't believe anything he messages or claims there!
I'm working on getting the account back with SR support. Very sorry for any trouble and misunderstanding that fucker causes meanwhile.
If you expect anyone to believe you, you had better start PGP-signing all your posts for the next little while, at least. Obviously, the first message in this particular thread could not have been posted if your Forum account were not compromised (assuming you're telling the truth in the first place.)
NC
-
Asylum has said elsewhere their account was HACKED and they were NOT compromised
-
ORR just for fun thought, he could have been busted, realized someone let us know and now have come back acting as Asylum...Im wondering if they got his Password from a Phishing somehow or maybe a friend of his? KiNDA interesting the possibilities here..O well NO more business for him/Unless your as bright as a 2watt light bulb..
-
Yeah I dunno mate ;)
No more business is for sure.
I've done biz with him before. Not through SR but I've PM'ed my address encrypted with PGP to him for some samples of NBOME. I think I'll be fine
-
Asylum has said elsewhere their account was HACKED and they were NOT compromised
Nonsense. If someone (other than the legitimate owner) can (and moreover, has) accessed Asylum's SR account and/or their SR Forum account, their accounts are compromised, period -- end of story.
Asylum claims that the post which started this thread was _not_ posted by him; if it wasn't posted by him, then it had to be posted by someone else, meaning that someone else had control of his Forum account (at least temporarily). If that isn' t the definition of compromised, I don't know what is.
NC
-
OK, I have to clarify the situation here.
It was a phishing attack. I wasn't careful enough, they got my password and my they got my PIN. My forum password was then guessed since it wasn't too different from the password on the SR account. He didn't care to change the forums pass and I recovered it back.
I won't start excusing myself or anything. It is embarrassing as it is... The truth is I could have prevented it. And I won't let the same happen again.
On the other side, he did not get any personal details. He has stolen about 100 BTC I had in the account, put me into debt with SR by cash-advancing, canceled all my current escrowed orders, which were some 300 BTC atm just for the sake of it. But he did not get to any addresses, since I shipped out last orders the day before and he has closed down my listings shortly after getting a hold of the account. It was not an attack on me personally, it was just that I was amongst few who felt for the trap. He did not access my computer and there were no addresses he could see in the SR account. It pains me to admit, being a vendor and logging in daily to SR for the last half year, but it did happen.
He has put this plea for donations to his address and few people fell for it donating him 37 BTC.
I'm now getting in touch with everyone who seems to have sent him the coins. I'll promise to pay them back after I'm able to pay back the debt to SR.
The lesson was paid for dearly. I'm terribly sorry for the confusion and bad situation the fucker has caused and I'll make sure to not let such situation to happen ever again.
-
How did you get to the phishing site? Was it the Wikipedia link?
-
As a fellow vendor this kind of news is the worse to hear. One of my worst fears is someone hacking into my account and I worry about it all the time. Everytime I try to login and make a mistake typing in my password, I think to myself "Ah fuck, I just got hacked!".
Thats why its always best to just memorize the SR url. Everyone should be doing this.
Again, its sorry to hear this happened to you. But its a lesson learned. All of us get fucked over at least once on SR. Its really the only way to learn especially with something so novel as a drug marketplace.
-
Please, everyone, memorize the url. This is how i remember it. silkroad vb (I remember the term visual basic) then I buy 5piz(zas) and 3r(etrurned) with .onion...
so, if i ever have a tough time remembering its pretty easy to type silkroadvb5piz3r.onion... We may not be able to help many noobs but for those that aren't new, should know better.. But, we all make mistakes..
~Flush
-
Yeah, especially if you visit the site daily like most vendors, you should have the address memorized. It's not that hard. Repeat it in your head for 20 minutes and you'll know it.
silkroad vb5 piz 3r
silkroad vb5 piz 3r
silkroad vb5 piz 3r
-
DON'T SEND ANYTHING TO THAT ADDRESS!
My account has been hacked. The fucker got full access to my SR account. He didn't change the forums password, so I was able to recover it now.
Whatever he says or does on SR, disregard it! Don't believe anything he messages or claims there!
I'm working on getting the account back with SR support. Very sorry for any trouble and misunderstanding that fucker causes meanwhile.
So your door was not kicked in and your apartment was not raided. You were not arrested and you are not running from the Policie České Republiky.
If that's the case, please delete the BTC address in the OP?
Dekuji pekne
-
DON'T SEND ANYTHING TO THAT ADDRESS!
My account has been hacked. The fucker got full access to my SR account. He didn't change the forums password, so I was able to recover it now.
Whatever he says or does on SR, disregard it! Don't believe anything he messages or claims there!
I'm working on getting the account back with SR support. Very sorry for any trouble and misunderstanding that fucker causes meanwhile.
So your door was not kicked in and your apartment was not raided. You were not arrested and you are not running from the Policie České Republiky.
If that's the case, please delete the BTC address in the OP?
Dekuji pekne
Seconded. If it isn't you scamming...edit the OP already and remove that BTC address. No reason you would post it wasn't you and just leave that up.
I always just do silkroad vb5 piz3r (like pizer but with a 3, easy to remember that detail). Easy to remember the first part obviously, 2nd and 3rd not much harder in pieces.
-
I normally have the link stored with other onion links and all potentially sensitive stuff on encrypted USB stick.
Well, that one day I wanted to just quickly check for new messages and didn't have the stick on me. Said what the heck then, let me just google it. The wiki pops up first and I use the link they provide.
It actually was quite a good attempt though. The design matched SR perfectly and they even got themselves an onion link starting with silkroad. I won't be surprised if they hit more accounts. Hopefully no other vendors, but I can imagine there are a lot of buyers who always use third party links. Little can be done about it except stressing the need to double check the link every time.
I'm not even mad, except at myself for giving him a joy.
Money doesn't mean that much, I just hope to clear my name and keep going. The lesson was well worth it.
And of course I won't use any link besides the one I memorize from now on.
-
DON'T SEND ANYTHING TO THAT ADDRESS!
My account has been hacked. The fucker got full access to my SR account. He didn't change the forums password, so I was able to recover it now.
Whatever he says or does on SR, disregard it! Don't believe anything he messages or claims there!
I'm working on getting the account back with SR support. Very sorry for any trouble and misunderstanding that fucker causes meanwhile.
So your door was not kicked in and your apartment was not raided. You were not arrested and you are not running from the Policie České Republiky.
If that's the case, please delete the BTC address in the OP?
Dekuji pekne
Seconded. If it isn't you scamming...edit the OP already and remove that BTC address. No reason you would post it wasn't you and just leave that up.
I always just do silkroad vb5 piz3r (like pizer but with a 3, easy to remember that detail). Easy to remember the first part obviously, 2nd and 3rd not much harder in pieces.
Done.
I've already stated on here and on vendor's page that I'll take the loss and refund anyone who donated him coins, just to clear any suspicion that it might have been me.
I've also messaged everyone who he was talking with judging by conversations in inbox. Waiting for responses.
-
my bull shit meeter aka spidy sense just got triggered
i dont believe you assylum
-
my bull shit meeter aka spidy sense just got triggered
i dont believe you assylum
Well, I don't know what else to say then.
-
I'm sorry Asylum for offending you (which i'm about to do) because you're already embarrassed enough, but I don't understand at all how a vendor doesn't have silkroadvb5piz3r.onion memorized.
You presumably log in regularly if your a vendor, and would quickly pick up the 8 characters after silkroad just through repetition. I just don't see how someone that logs on regularly doesn't have vb5piz3r memorized.
Like to the point where I think you are either Asylum lying through his teeth, or the/some hacker that has control of Asylum's forum and is ... lying through his teeth.
This is very bizarre because I don't know what your trying to extort from people or how your trying to do it within this thread. There is no doubt in my mind that Asylum has easily memorized the very easy sequence of vb5piz3r through attrition, I mean come on .... I would cut you some slack on memorizing the forum URL cuz it has a few more character's and you'd likely not be visiting it as much as you would be the main SR page as a vendor, but there is no way a regular user and vendor to boot doesn't have vb5piz3r memorized, you're lying.
What motivation or means is there here to extort people through blatantly transparent lies? I mean, my face is flushed with confusion and frustration for real right now as to how a vendor (aka regular visitor) doesn't have vb5piz3r memorized. There simply is no way.
Are you lying to us to try and make yourself feel less embarrassed?
Or to make people who think you were in the process of scamming them (by leaving SR and taking the money from people who had FE with you) feel less angry?
I am completely confounded by this.
EDIT: I just realized that there is one possibility, and that is that you put on a facade wherin you WERE the 'hacker' and now that you've got your account secured again you're feeding off the pity/sympathy/whatever word you wish to choose of other people asking them to donate to you re-establishing yourself, when you were never broken in the first place ... that's all I got ....
And I only thought of it cuz I know there are several pan handler's actually leading stable, normal and financial sound lives but go out pretending to be a pan handler because believe it or not they can easily make more money per hour then a minimum wage job.
-
Hell, I memorized it while reading quinone's post. :)
-
if youv been around for more than a mounth you know that the silk road link on the Hidden Wiki is a fishing pond
Assylum has been around for more than 6 mounths
it could be the person who posts under assylum on this forum is a cop.........throb throb throb
-
I'm sorry Asylum for offending you (which i'm about to do) because you're already embarrassed enough, but I don't understand at all how a vendor doesn't have silkroadvb5piz3r.onion memorized.
You presumably log in regularly if your a vendor, and would quickly pick up the 8 characters after silkroad just through repetition. I just don't see how someone that logs on regularly doesn't have vb5piz3r memorized.
Like to the point where I think you are either Asylum lying through his teeth, or the/some hacker that has control of Asylum's forum and is ... lying through his teeth.
This is very bizarre because I don't know what your trying to extort from people or how your trying to do it within this thread. There is no doubt in my mind that Asylum has easily memorized the very easy sequence of vb5piz3r through attrition, I mean come on .... I would cut you some slack on memorizing the forum URL cuz it has a few more character's and you'd likely not be visiting it as much as you would be the main SR page as a vendor, but there is no way a regular user and vendor to boot doesn't have vb5piz3r memorized, you're lying.
What motivation or means is there here to extort people through blatantly transparent lies? I mean, my face is flushed with confusion and frustration for real right now as to how a vendor (aka regular visitor) doesn't have vb5piz3r memorized. There simply is no way.
Are you lying to us to try and make yourself feel less embarrassed?
Or to make people who think you were in the process of scamming them (by leaving SR and taking the money from people who had FE with you) feel less angry?
I am completely confounded by this.
EDIT: I just realized that there is one possibility, and that is that you put on a facade wherin you WERE the 'hacker' and now that you've got your account secured again you're feeding off the pity/sympathy/whatever word you wish to choose of other people asking them to donate to you re-establishing yourself, when you were never broken in the first place ... that's all I got ....
And I only thought of it cuz I know there are several pan handler's actually leading stable, normal and financial sound lives but go out pretending to be a pan handler because believe it or not they can easily make more money per hour then a minimum wage job.
I did not have it memorized.
Seriously, you're fully right at being suspicious at this point. But I don't know how to defend myself further if you can't accept that. Any ideas, please bring them on.
More reading here:
Reposted from my vendor's page:
16.12 UPDATE
I've paid a hefty price for not being careful enough and falling for a phishing attack. The hacker did as much damage as he could before I was able to recover the account back thanks to SR support.
What he has managed to do:
1) Stealing BTC lying in SR account at the time.
2) Putting me at further debt with SR by cash-advancing what he could.
3) Posting a plea for help, claiming I was busted and in a need of money to run from authorities on vendor's page and on forums.
- He managed to raise 37 BTC (over $500) in one day through that plea. Now, I'm extremely grateful to you all who have responded to that...
Even if it was a fake, it's still a great feeling to know we're growing a supporting community and that if an unlikely situation comes, and I get busted, I know that at least there are people who care and some good has been succesfully done...
** If you've sent money to that plea, please get back to me and let me somehow pay you back!
4) Canceling all current escrowed orders. Now this served him nothing, but got me short of few thousand $$.
*** PLEASE - if you receive your package, pay for it. Even if the order was canceled by him, I sent it out prior to that.
I'm dependent on that money and have no other source of income. I don't expect all of you to pay, and you can easily just keep both the money and the product... I won't say a word. But I still hope the honesty prevails. ***
5) Messaging some customers directly asking for donations.
- I've contacted everyone I could see he messaged to explain the situation. If you had any communication with him during past two days and I didn't notice, please let me know!
6) Deleting all my listings. Most had a history going back to 6 months and were on top in DMT category.
** Most importantly though - I want to stress out that no personal details has been leaked. No addresses were stored anywhere on SR account.
I'll dedicate the upcoming days to settling up anything coming from the situation and I won't put up new listings until everything is cleared out. Please feel free to drop me a message if you've got any inquiries.
I can't begin to say how sorry I am for that shit. Of course I could start thinking up excuses why that happened etc., but the fact is it all comes to not being careful enough when I had to. Stay safe yourself and all the best to everyone.
The karma will take care of the fucker.
-
robust he got the link by wikipedia.org not Hiddenwiki.
And I believe him, people sometimes fuck up, a lot of users where phished the last 2 days, one of them happened to be a vendor.
-
Asylum, what's the link to the phishing site?
-
LOL someone gave me -ve karma for legitimately and bluntly asking how could you not possibly know vb5piz3r !
I love this karma system lol, I piss the person off that i'm calling out on a lie and they or their followers leave negative karma haha. So much for supporting the community (by for example calling out an extremely suspicious series of events that all hinged on the incredibly simple memorization of vb5piz3r) !
You people should be trying to be critical of very suspicious things, regardless of who the person is. Does nobody remember tony76?
It doesn't matter how much you love the vendor, hell I love googleyed, he's been exemplary in his services to me, but if he ever did or said something of such an extremely suspicion nature such as not knowing vb5piz3r it's all of our responsibilities to question it so that we can protect each other.
On a personal note, yeah your life is in shambles Asylum, but it's all because you for some reason can't memorize vb5piz3r and yet have the audacity to become a vendor and put every single client of yours at risk? Because if you can't remember vb5piz3r there are clearly other mental handicap's that could seriously jeopardize your clien't security.
Why should anybody give you any sympathy? Your life didn't fall apart because of something serious, it fell apart because you failed to do something a gradeschool kid could muster ... memorize vb5piz3r. If you want to lead a good life you need to protect yourself, and putting hundreds of people at risk as you vend whilst not even having memorized vb5piz3r is a clear demonstration of how NOT to protect yourself.
And then people come and give me -ve karma for calling out the truth in an effort to help protect the community lol. Jeez this place is crazy.
-
LOL someone gave me -ve karma for legitimately and bluntly asking how could you not possibly know vb5piz3r !
I love this karma system lol, I piss the person off that i'm calling out on a lie and they or their followers leave negative karma haha. So much for supporting the community (by for example calling out an extremely suspicious series of events that all hinged on the incredibly simple memorization of vb5piz3r) !
You people should be trying to be critical of very suspicious things, regardless of who the person is. Does nobody remember tony76?
It doesn't matter how much you love the vendor, hell I love googleyed, he's been exemplary in his services to me, but if he ever did or said something of such an extremely suspicion nature such as not knowing vb5piz3r it's all of our responsibilities to question it so that we can protect each other.
On a personal note, yeah your life is in shambles Asylum, but it's all because you for some reason can't memorize vb5piz3r and yet have the audacity to become a vendor and put every single client of yours at risk? Because if you can't remember vb5piz3r there are clearly other mental handicap's that could seriously jeopardize your clien't security.
Why should anybody give you any sympathy? Your life didn't fall apart because of something serious, it fell apart because you failed to do something a gradeschool kid could muster ... memorize vb5piz3r. If you want to lead a good life you need to protect yourself, and putting hundreds of people at risk as you vend whilst not even having memorized vb5piz3r is a clear demonstration of how NOT to protect yourself.
And then people come and give me -ve karma for calling out the truth in an effort to help protect the community lol. Jeez this place is crazy.
You need to calm down a little, man.
I'm not crying on your shoulder and my life is not in ruins. All I'm trying to do is make it clear that the account has been hacked but is now restored.
-
Dude, please answer my simple question: What's the URL of the alleged phishing site?
This information will go a long way to corroborating your story - so share now please.
-
And all i'm saying is that nobody should deal with you on that account period.
You can say you restored it till you're blue in the face, you can authenticate your POSTS with your PGP signature and key, but you can't legitimately claim that your account is restored, and that it's even YOUR account.
I'm saying nobody should do business with you, you screwed up, you're going to have to start from scratch with a brand new account, and for the safety of the members of SR I am imploring them not to do business with your current account. There are too many unanswered questions and extremely bizarre circumstances surrounding this account of yours. It's been compromised, you need to start fresh dude.
-
Dude, please answer my simple question: What's the URL of the alleged phishing site?
This information will go a long way to corroborating your story - so share now please.
The phishing site: http://silkroadvlsu5apk.onion/
-
OK, it checks out - and a pretty slick site.
I filled in some bullshit login details, it then took me to a page that asked for my PIN and password again (due to an apparent issue with my account), filled bullshit again, and then it took me to my actual SR account. wtf? I was logged in already on another tab but this makes me nervous. Any tech people care to comment how this could be possible??
Anyway I can see how someone could get taken there if they weren't paying attention...
BG
-
BlueGiraffe - I'd be changing my passwords and PINs if i were you. Logging into that phishing site with a real SR tab logged in already? not smart.
Same with everyone else, this is a good example why you should regularly change your login information. Like once a week.
-
OK, it checks out - and a pretty slick site.
I filled in some bullshit login details, it then took me to a page that asked for my PIN and password again (due to an apparent issue with my account), filled bullshit again, and then it took me to my actual SR account. wtf? I was logged in already on another tab but this makes me nervous. Any tech people care to comment how this could be possible??
Anyway I can see how someone could get taken there if they weren't paying attention...
BG
SR uses cookies. You have an active-login session cookie. Close your SR-tab then open a new one, say to a vendor's account. You'll still be logged in.
-
Have changed passwords and PIN already - did it within 30 seconds of being routed back into my own account, and then logged out immediately and logged in again after I had closed the phishing site tab. Got a huge fright. How can I be sure that my account is cool?
-
BlueGiraffe - I'd be changing my passwords and PINs if i were you. Logging into that phishing site with a real SR tab logged in already? not smart.
Same with everyone else, this is a good example why you should regularly change your login information. Like once a week.
Once a week? That's drug induced paranoia bro.
A wise x moderator has shown me how wrapped up in paranoia this forum is, with pine as one of it's leaders ... and people drooling off an avatar that's a google image, pine's a dude :D
Taking precautions is important ... changing your login info weekly is just a sign that you don't have your computer secure to begin with, or else there'd be no need to go to such superfluous lengths to ensure your security :)
-
holly fuck this is crazy talk, i would say avoid this person
-
OK, it checks out - and a pretty slick site.
I filled in some bullshit login details, it then took me to a page that asked for my PIN and password again (due to an apparent issue with my account), filled bullshit again, and then it took me to my actual SR account. wtf? I was logged in already on another tab but this makes me nervous. Any tech people care to comment how this could be possible??
Anyway I can see how someone could get taken there if they weren't paying attention...
BG
SR uses cookies. You have an active-login session cookie. Close your SR-tab then open a new one, say to a vendor's account. You'll still be logged in.
So the fact that after filling in bullshit information on the phishing site the next thing I'm on the real site in my account doesn't indicate that there was a link between the two somehow? Or that they could have gained access?
-
This fiasco is another reason why you should always encrypt your address, no exceptions, and it blows my mind that 80% of SR users send their addresses in plaintext, according to stats provided by some vendors.
We usually think of the main threat as being LE compromising the server, but mundane shit like this more likely to happen, and you never know who it's going to happen to. A vendor got phished. Luckily this time no addresses were stored on the account, but next time the phisher may try to blackmail everybody whose addresses he gets. Oh, don't want me to turn this info over to your local police department? 50 BTC please. And that's assuming the phisher isn't LE.
-
OK, it checks out - and a pretty slick site.
I filled in some bullshit login details, it then took me to a page that asked for my PIN and password again (due to an apparent issue with my account), filled bullshit again, and then it took me to my actual SR account. wtf? I was logged in already on another tab but this makes me nervous. Any tech people care to comment how this could be possible??
Anyway I can see how someone could get taken there if they weren't paying attention...
BG
SR uses cookies. You have an active-login session cookie. Close your SR-tab then open a new one, say to a vendor's account. You'll still be logged in.
So the fact that after filling in bullshit information on the phishing site the next thing I'm on the real site in my account doesn't indicate that there was a link between the two somehow? Or that they could have gained access?
Go do what I told you to do. If you're still confused, I'll answer your question. I'm hoping the physical example of how cookies work(basic internet knowledge) will calm your paranoia.
-
I'm calm :) Especially after shutting everything down, re-accessing my account and changing my password and PIN again and then logging out again. - just to make 200% sure! All good now - just a moment of concern...
And yes I understand. The fact that I was already logged in, meant that that all the phishing site had to do was return to the SR index page or login page, and I would get displayed the index page I was logged in to. Just wasn't expecting so got a bit of a fright.
And better safe than sorry...
Thanks for your insights :)
BG
-
This is not Asylum!
Glad he got his account on the forum back, here's hoping SR staff sort out any other issues he has.
He's a fucking top vendor guys and deserves our support.
If the REAL Asylum was down and out I would gladly donate to his legal fund since he always goes above and beyond for his customers.
To the scammers who got his account I say a BIG FUCK YOU!!!