Reader Orome1 writes: In a period spanning 72 days, two researchers from Northeastern University have discovered at least 110 “misbehaving” and potentially malicious hidden services directories (HSDirs) on the Tor anonymity network. “Tor’s security and anonymity is based on the assumption that the large majority of its relays are honest and do not misbehave. Particularly the privacy of the hidden services is dependent on the honest operation of hidden services directories (HSDirs),” Professor Guevara Noubir and Ph.D. student Amirali Sanatinia explained. “Bad” HSDirs can be used for a variety of attacks on hidden services: from DoS attacks to snooping on them.
Read more of this story at Slashdot.