Honestly regardless of the truthfulness of this particular story, I am a bit disgusted that peoples first reactions are "LIES" instead of "Possible compromise". Especially given that so far everybody commenting on why it is impossible obviously doesn't know what the fuck they are talking about. Professional Penetration Tester is a real job title for white hat hackers, people who would be the ones trying to deanonymize SR by hacking into it (aka: penetrating it) rather than via tracing through Tor (those people would be called Professional Traffic Analysts). Making fun of what he called himself just shows your own stupidity and lack of understanding of the technical community. I sure hope nobody has compromised SR, but that attitude that it is impenetrable is completely wrong (VERY LITTLE software has been mathematically proven as secure from hackers, and even the software that has been proven to be is only proven to be when a large set of unproven assumptions have been met. Even life critical software is usually not mathematically proven as secure, although it is often crafted with stringent coding standards and intense auditing). Additionally there wouldn't need to be a new exploit for Tor found, strictly speaking an attacker could hack the instance of Tor on SR to obtain its real IP address, or they could hack any of the other available routes to its real IP address, Apache comes to mind. Or it could be from a misconfiguration of something and not require any hacking at all. And there wouldn't even really need to be a new attack on Tor found, there are somewhat practical traffic analysis attacks against Tor that stand various chances of deanonymizing hidden services by themselves. Anyway that is all I have to say on the matter, I just hate to see people having a default sense of invincibility, it is something that often precedes one being shown that they are incorrect.