Genesis Market’s Clearnet Domain Seized, Onion site still Online
Published by Ethan on Thu, Apr 13, 2023 | Tagged Darknet Market, Hacking | 128 Comments

On April 4th, the FBI, in cooperation with several international law enforcement agencies, seized the domains of Genesis Market. The service was shut down, and its clearnet infrastructure seized. This operation was called "Cookie Monster."

Simultaneous actions were also carried out across the globe against the users of this platform, resulting in 119 arrests, 208 property searches and 97 knock- and-talk measures.

Not so long after the final seizure, the administrator's account of the Genesis market posted on two Russian cybercrime forums, Exploit.in and XSS.is, announcing that they will be using the old Tor domain going forward. It can be assumed that the platform admin have not been caught yet, however, this could also be a honeypot.

Genesis's admin statement

Genesis Market was a marketplace where cybercriminals offered login credentials for sale for numerous different services. The offers related to both corporate and consumer accounts. These included social networks such as Facebook, Twitter, LinkedIn or Reddit and also streaming services such as Netflix or Spotify. Accounts from Gmail, WordPress, PayPal, Amazon, Cloudflare, Zoom or eBay could also be purchased there.

Most of these data were acquired through malware or account takeovers attacks.

With special browser plugins, Genesis Market made it easy for users to access the compromised accounts, referred to as "bots"; with just a few clicks the acquired credentials were imported directly into the web browser, a buyer could thus assume the digital identity of another person. Cookies, fingerprints, saved logins or autofill form data; all there. This allowed the criminals to access the victim's account without triggering any of the security measures from the platform the account was on.

The price per bot would range from as little as USD 0.70 up to several hundreds of dollars depending on the amount and nature of the stolen data. The most expensive would contain financial information allowing access to online banking accounts.

"Bots" available on Genesis

It was considered one of the biggest criminal facilitators, with over 1.5 million bot listings totaling over 2 million identities at the time of its takedown.

Unlike other criminal marketplaces, Genesis Market was also accessible on the open web, in addition to their .onion domain. Their .onion domains appears to be intact.

The US Department of Justice also released a document detailing the investigation, alleging that law enforcement officers managed to gain access to the backend of the site, in December 2020, as well as to the data of 59,000 users, including passwords, email addresses and cryptocurrency wallets and logins in Jabber.

Key points from the warrant:

The United States Treasury Department also imposed sanctions against Genesis Market domains.

The Dutch computer security firm Computest worked with Trellix and the Dutch Police to analyze the Genesis Market malware here.

scroll to the bottom or reply to comment
8e26115a39
8e26115a39
Thu, Apr 13, 2023

Add bitcoin in to your opsec equation and you will always fail. When will they learn?

New comments are disabled for this page.
541397b760
541397b760
Thu, Apr 13, 2023

CBDCs = ultimate opsex

New comments are disabled for this page.
819a03cb98
819a03cb98
Thu, Apr 13, 2023

if u have nothing to hide u have nothing to fear

eat ze bugs

take ze vaccines

own nothing

and b happy

413e150a6f
VonMagnet
Sat, Apr 15, 2023

Down with the WEF and der schwabenklaus! RIP the great reset!

3da1f395f6
Smart
Thu, Apr 13, 2023

You would think they learned their lesson the first time their servers got compromised...

New comments are disabled for this page.
0886aa1409
bitcoinnigger
Thu, Apr 13, 2023

niggers using bitcoin. dumb.

New comments are disabled for this page.
e5277f6771
DeSnake
Thu, Apr 13, 2023

Alphabay + Genisis Market COLLAB coming really soon!

New comments are disabled for this page.
0d06167733
0d06167733
Thu, Apr 13, 2023

YES!

1bc17c6182
PsiloNauts
Sat, Apr 15, 2023

N O !

16cdb56a06
Ross Ulbricht
Fri, May 19, 2023

Can i join in

604d1c8122
604d1c8122
Tue, Oct 31, 2023

you wishh

2356fd3fbe
2356fd3fbe
Thu, Apr 13, 2023

I wouldn't trust the onion site after a security breach of that level

New comments are disabled for this page.
ce6b35d082
DeSnake
Thu, Apr 13, 2023

Just trust me instead. It's why we are making a new COMBINED marketplace.

GenesisBay. Coming real soon. 100% decentralized. I don't even know what that word means but hey, my customers eat that shit up.

-DeSnake(the real one)

044b4c2aac
PharmJabKillPatienh
Sat, Apr 15, 2023

Why dont you think about Equity and Inclusion, before you start thinking about fucking everyone in the ass again with a new market, you sick fuck.

c0e466a71e
Militant Feminist
Fri, Apr 21, 2023

Are there LGBTQ+ DNM out there? I need a safe space from all the hate speech. And some organic coke :D

e80f8fdb69
e80f8fdb69
Thu, Apr 13, 2023

where can i find official links to markets and stuff?

New comments are disabled for this page.
509c5a7cf8
509c5a7cf8
Thu, Apr 13, 2023

http://tortimeswqlzti2aqbjoieisne4ubyuoeiiugel2layyudcfrwln76qd.onion/markets/

a4f3637536
MegaCryptoAssFucker
Fri, Apr 21, 2023

Oh you sweet summer child

313dbcb41b
3 Letter Satanic Cabal
Fri, Apr 21, 2023

We are going to steal all your Bitcoin from you and then exhaust you in the industrial prison complex till you wish you were never born. Read and grow an intellect before you order and take drugs. Otherwise we will get you and eat you alive.

c5c1bff851
jimj0nes
Thu, Apr 13, 2023

aint no way yall took long to write this out

New comments are disabled for this page.
2b774e23f9
2b774e23f9
Thu, Apr 13, 2023

All of this was made possible by the removal of TLS Session IDs. It's almost impossible to hijack a session with TLS 1.2 Session IDs but the NSA wanted them removed so TLS 1.3 removed them, now there's widespread session hijacking. Just like the browsers removed HPKP after the NSA became upset with it, there was A LOT of money spent on the anti-HPKP PR operation. The best one was removal of quantum resistant DHE and then the NSA saying "oh no! P256 isn't quantum resistant so we will have a new untested algorithm for TLS 1.4"

New comments are disabled for this page.
5e96275486
5e96275486
Thu, Apr 13, 2023

We should start a project to fork Firefox and re-add all of the removed security features. A RSA-4096 certificate with DHE-4096 key exchange, re-add HPKP, re-add TLS Session IDs, and remove remote NSA connections for CT/OCSP.

aea60caaea
aea60caaea
Thu, Apr 13, 2023

Forking a browser won't solve the problem, you need to fork openssl. Good luck with that spaghetti code.

4d5cf9ef42
low
Thu, Apr 13, 2023

No one uses openssl. Boringssl is the new kid

39056249c1
39056249c1
Thu, Apr 13, 2023

@2b774e23f9 delete this

this has been debunked

trust the nsa, trust the experts and get the vaccine

cdfedd7a9f
cdfedd7a9f
Sat, Apr 15, 2023

sources for any of this?

3ebc7b594b
3ebc7b594b
Sat, Apr 15, 2023

It's safe to assume anything that decreases security without some reason behind it is the NSA's hidden hand since they spend 100s of millions per year weakening internet security. They paid RSA to make the backdoored DRBG RNG default for their crypto products using the same fund before Microsoft exposed the backdoor. The NSA's job is targeted hacking, not illegal mass surveillance.

04d0fee46b
Sn0wd3n
Mon, Apr 17, 2023

The same reasons Session removed Perfect Forward Secrecy from their IM. NSA pressure.

a1f47550a8
DeSnake
Thu, Apr 13, 2023

fuck jannies and niggers! fembots dont exist! genesis is a honeypot! maga! (im a groyper)

New comments are disabled for this page.
b5a87644ce
b5a87644ce
Thu, Apr 13, 2023

lmao nice fedpost

ae1452aebe
Q
Thu, Apr 13, 2023

DeSnake will return

Trump will win

AlphaGuard

Patriots are in charge

Trust the plan

2024

efc698b7f2
plantruster
Sat, Apr 15, 2023

trust the plan! Two more weeks!

>Q

317aae636c
ChopWilson
Sat, Apr 15, 2023

DeSnake will turn transgender after joining Trantifa.

Two more weeks until the great crash begins.

Trust the gold, silver and the crypto.

41dc35b9b8
41dc35b9b8
Thu, Apr 13, 2023

GENESIS ONION PLEASE? FOR RESEARCH PURPOSE LOL

New comments are disabled for this page.
04b866bf5d
sexybomb
Thu, Apr 13, 2023

GENESIS ONION PLEASE?? I NEED IT FOR RESEARCH PURPOSES LIKE THIS GUY (also not a fed, my name is definetly not agent sanchez)

New comments are disabled for this page.
4c2ec3a404
4c2ec3a404
Fri, Apr 14, 2023

kill yourself glowkike

38391db48a
Agent Sanchez
Thu, Apr 13, 2023

Hey, anyone got the onion link for Genesis? As a fellow cyber-criminal I would like to purchase some illegal digital bank information from that website, yo, biatch

New comments are disabled for this page.
e46d2848da
e46d2848da
Thu, Apr 13, 2023

Hello Mr. Sanchez. You can use the clearnet link. Genesis.Market

If there are any problems use NordVPN.

1cdbd589a7
MAGA
Thu, Apr 13, 2023

"JESUS WILL SAVE GENESIS." - ONION 7:19

New comments are disabled for this page.
034c58300d
FSM
Fri, Apr 14, 2023

kek

961f0810a4
961f0810a4
Thu, Apr 13, 2023

Genesis is dumb. What can you really get with grandma's password? That's why banks aren't hacked more, it's all traceable, reversible, and limited. The IRS can locate you based on the transaction amounts for what you order at McDonalds. The FBI knows the exact location of any phone for it's entire existence in 5 minute intervals. Many of the people who think they're getting away with something are just small time and not on the fed radar yet.

New comments are disabled for this page.
a34c55e4a3
a34c55e4a3
Thu, Apr 13, 2023

don't pay using a card

don't carry a phone

they're powerful, yes. omniscient, no

e6ae588bf8
e6ae588bf8
Sat, Apr 15, 2023

Overhyping shit, with good opsec things can be avoided

83c37d46ee
83c37d46ee
Mon, Apr 17, 2023

@e6ae588bf8 OKAY GLOWIE. They're hacking computers over the power lines and those RGB lights on your computer are transmitting what you type!

a0daaa0353
a0daaa0353
Mon, Apr 17, 2023

If you're a market buyer then you need an underground bunker at a minimum. A market vendor needs satellite links and ocean ship based repeaters!

b85c856743
b85c856743
Fri, Apr 21, 2023

@83c37d46ee bro strop playin you just need good opsex

a846c0d5f6
a846c0d5f6
Fri, Apr 14, 2023

behead niggers

behead jews

behead kikes

behead trannies

behead zionists

behead faggots

bomb israel

New comments are disabled for this page.
c179877da9
c179877da9
Fri, Apr 14, 2023

Bro translated the 7 commandments of the Quran

184ba56a62
184ba56a62
Fri, Apr 14, 2023

Love Niggers

Kiss Jews

Racemix with a kike

Ignore Trannies

Lick a zionist's pussy

Ignore a faggot

Bomb Israel

2f023f95e6
2f023f95e6
Sat, Apr 15, 2023

holy based

I KNEEL

98107a6135
98107a6135
Sat, Apr 15, 2023

You are a racist fuck and I hope they find you and do a mother fucking prisoner trade for Ross. You deserve his sentence not him.

663e7481cf
663e7481cf
Sat, Apr 15, 2023

People like you need to be caught and put away forever. Youre rights to any type of constitutional or federal laws should be stripped and I hope they find you and your group of morons that are ruining this country.

9422793c97
MAGA JEWS
Wed, Apr 19, 2023

support the global genocide of white people !

18d43ae213
Hmyaok
Thu, Apr 20, 2023

Based and silver pilled

c2a976ff5a
c2a976ff5a
Sat, Apr 22, 2023

==>>a846c0d5f6==

==keyed as fuck==

3d70bb97c1
Jjj
Tue, May 23, 2023

Based

7f7a8be924
7f7a8be924
Fri, Apr 14, 2023

I was chatting with a multi-national company and the minimum wage person was being mean so I told them about a security vulnerability that I've known about for over three years. Someone from their executive office called me asking if I want money in exchange for not disclosing the vulnerability and I told him "No, I'm telling everyone." It has to be the biggest vulnerability of the year, their entire company is at stake, and they're dealing with a troll. I'm expecting a lawyer to contact me with a legal threat at any moment. LOL

New comments are disabled for this page.
e885904b57
e885904b57
Fri, Apr 14, 2023

I have a suspicion that a few fake security experts are getting fired soon. It's common knowledge that IT fields have 50%+ posers, but IT Security has to be at least 80%+ posers.

24ac835a28
24ac835a28
Fri, Apr 14, 2023

I hacked a bank like that in Europe. Fucking pathetic cunts. Their API was exposed and didn't verify if i'm the person? so basically you could see transaction history going far back many years. I send them an email and got basically ghosted? So I scraped all the transaction date, contacted all the people who use their services and told them their bank sucks and they should call to their bank and say they were hacked and suck. Within a few days, I've got a reply, the API was fixed and I was offered a job. Lmfao I was 15. Still think it was a LEA trap. Still kept the email and the api data, still jobless, mostly fraudster kek. sad life.

ee74b24b08
ee74b24b08
Sat, Apr 15, 2023

Fr? (To everything in this thread)

7844f4787a
7844f4787a
Sat, Apr 15, 2023

You hacked it or just discovered a vulnerability

5423da5451
5423da5451
Sat, Apr 15, 2023

@7844f4787a 300 iq question glowie.

105ba7f7ae
105ba7f7ae
Sat, Apr 15, 2023

if he didn't make use of the vulnerability he can't be charged as bad

01ba0c4221
01ba0c4221
Sat, Apr 22, 2023

It’s already spreading in the news. Major service providers transmitting data in cleartext because of bad session ticket encryption. This is why TLS 1.3 is forcing session tickets unless you know how to disable them. It’s being suppressed in the news, way worse than what’s being reported .

e7be8dba98
e7be8dba98
Sat, Apr 22, 2023

HIPAA, PCI, FIPS +++ all in cleartext for years. LOL

c420b37c36
c420b37c36
Sat, Apr 22, 2023

“bad session ticket encryption” is a little misleading because session tickets exist to allow state decryption. Their only purpose is to break PFS and leak the secret key. Session Tickets = Clipper Chip

77e108facb
MAGA
Sat, Apr 15, 2023

MAGA

New comments are disabled for this page.
58594ff2af
58594ff2af
Sat, Apr 15, 2023

Also an idiot.

519f0d55ec
519f0d55ec
Sat, Apr 15, 2023

behead niggers

behead jews

jews did 9/11

New comments are disabled for this page.
38ae6b5f51
38ae6b5f51
Sat, Apr 15, 2023

Glowie

3ca5365b67
3ca5365b67
Sat, Apr 15, 2023

You're an idiot

3548a09d28
DinksANDgooksDidIt
Sun, Apr 16, 2023

No, the Chinese did 9/11, the jews were their bitch, you dumb fuck.

d5aa259011
CIA nigger
Wed, Apr 19, 2023

“The CIA niggers glow in the dark; you can see them if you’re driving. You just run them over.”

b4e8a80e91
b4e8a80e91
Sat, Apr 15, 2023

I WANT HUGBUNTER'S COCK IN MY ASSSSSSSSSSSSSSSSSS SO BADLYYYYYYYYYYYYYYYYYYYYYY OMGMGMGMGMMGMGMGMGMG

PLEASEASEASEASEASEASESEASE

New comments are disabled for this page.
3546e4ddc2
3546e4ddc2
Sat, Apr 15, 2023

BRUH CHILL 💀💀💀

3b7be60080
3b7be60080
Sat, Apr 15, 2023

Disrespectful idiot

f860f51d0c
desnack
Sun, Apr 16, 2023

why you using emojis on the dn you weirdo

ef354df11e
ef354df11e
Sun, Apr 16, 2023

i would vacuum the cum out of his balls given the chance

f53f86de98
HugBunter
Sun, Apr 16, 2023

Where and when? ;)

-----BEGIN PGP SIGNATURE-----

Version: GnuPG v1.4.6 (MingW32)

iD8DBQFFxqRFCMEe9B/8oqERAqA2AJ91Tx4RziVzY4eR4Ms4MFsKAMqOoQCgg7y6

e5AJIRuLUIUikjNWQIW63QE=

=aAhr

-----END PGP SIGNATURE-----

fe1993c95b
donkeymunch
Sat, Apr 15, 2023

ayo tortimes can u wait anuddah week 4 my article? i finna took edibles and forgot 😭😭😭

New comments are disabled for this page.
08a4a782ab
DeSnake
Sat, Apr 15, 2023

br6ke bre6d to m6ke bre6d nigger.. (im a groyper)

New comments are disabled for this page.
14ad387b3a
KMFDM KRANK
Sun, Apr 16, 2023

no, you a GROPER so stop groping ya self faggot ferry-fuck! You a child groomer, so stop gender queering the children SMF!

813220950e
Deebo
Sun, Apr 16, 2023

What is the Genesis Market onion url?

New comments are disabled for this page.
3f924142cf
DeSnake
Sun, Apr 16, 2023

Yo nigger ethan

New comments are disabled for this page.
d7a850b399
Hugbunter
Sun, Apr 16, 2023

Yo nigger ethan

d3bac9314a
DeSnake
Sun, Apr 16, 2023

i exited scam cuz i hated niggers buying crack (im a groyper)

New comments are disabled for this page.
ce09b83974
ce09b83974
Sun, Apr 16, 2023

i bet chugbutner's pussy is real nice and tight

New comments are disabled for this page.
f2a570e5d9
f2a570e5d9
Sun, Apr 16, 2023

humpbunter needs to come out of the closet lol

734d13c791
734d13c791
Sun, Apr 16, 2023

Coinbase is exit scamming.

New comments are disabled for this page.
f6a63d72a9
f6a63d72a9
Mon, Apr 17, 2023

[removed]

New comments are disabled for this page.
955e1a39e1
955e1a39e1
Mon, Apr 17, 2023

nigga your website looks like absolute shit what GPT prompt did you use to generate it kill yourself

ed00142010
DeSnake
Mon, Apr 17, 2023

LMFAOOOOOO

7206f18f75
Paris
Tue, Apr 18, 2023

partner up ?

fe6745689c
Hugflumper
Thu, Apr 20, 2023

Count me in too

887d8e39fd
Paris
Mon, Apr 17, 2023

Yo nigger ethan

New comments are disabled for this page.
0097e4271c
MAGA Train 88
Wed, Apr 19, 2023

🇺🇸 Vote MAGA over DeSadTits 2024. Say hell no the CIA glowies and the deep state! 🇺🇸

New comments are disabled for this page.
41de31898c
41de31898c
Wed, Apr 19, 2023

yo link?

New comments are disabled for this page.
ffcca9a2fc
ffcca9a2fc
Thu, Apr 20, 2023

USA is turning into South Africa. In SA the blacks stole all the farmlands from the whites for "reparations" and they can't find any blacks to work on them so there's a food shortage crisis and they have to import food. Prior to the farmlands theft they were a net exporter of food.

New comments are disabled for this page.
b3d521d03b
BK
Thu, Apr 20, 2023

yo white boi

pay up to BLACK KINGS

52312653ee
donkeysquad
Thu, Apr 20, 2023

ayo u should be grateful us BLACK KINGS be takin your $$$ 🙌

292022fd57
292022fd57
Fri, Apr 21, 2023

kill all black niggers, thats the only way

c20f5d6f51
c20f5d6f51
Thu, Apr 20, 2023

guys i was just jerking off and searchin for porn, guess what? I found Ethan the one and only. https://www.gaysearch.com/videos/50305/ethan-lust-s-bro-gives-him-a-hand/?utm_source=PBWeb&utm_medium=PBWeb&sub=100001

New comments are disabled for this page.
3eae02f60e
3eae02f60e
Thu, Apr 20, 2023

Is this real?

8924a69333
8924a69333
Fri, Apr 21, 2023

yo nigger ethan

New comments are disabled for this page.
07791e66c1
07791e66c1
Fri, Apr 21, 2023

why is your canary expired by two whole weeks

New comments are disabled for this page.
a00a24bbb0
a00a24bbb0
Fri, Apr 21, 2023

Ethan is an interpol agent.

a5bc53a01f
Elmo Snowden
Fri, Apr 21, 2023

All DNM are run by NSA and CIA to fund their covert operations. Ross is an CIA actor. Rethink your addictive patterns!

af0a18bfb9
af0a18bfb9
Sat, Apr 22, 2023

Ethan is addicted to drugs and he's been high past few weeks. I feel kinda sad, hopefully he makes it out ok.

366897dcc9
366897dcc9
Fri, Apr 21, 2023

https://1.1.1.1 don’t hack me bro.

New comments are disabled for this page.
4f0b2345fa
Q
Fri, Apr 21, 2023

Trust the plan. WHITE POWER

New comments are disabled for this page.
ab790c9c9e
ab790c9c9e
Fri, Apr 21, 2023

BLACK LIVES MATTER

af5c601c30
Subhuman Musk
Fri, Apr 21, 2023

ANIMAL LIVES MATTER

New comments are disabled for this page.
e563c880da
e563c880da
Sat, Apr 22, 2023

Eat RAMEN NOODLES or you’re a fed.

New comments are disabled for this page.
27d0914c5b
27d0914c5b
Sat, Apr 22, 2023

Chicken Flavor

4feb19b454
4feb19b454
Sat, Apr 22, 2023

DeSnake is a bitch.

New comments are disabled for this page.
5f88e7e857
DeHugParis
Sat, Apr 22, 2023

yo nigger ethan

New comments are disabled for this page.
27f054a2ce
27f054a2ce
Sat, Apr 22, 2023

wassup

New comments are disabled for this page.
dc92f0b9fc
dc92f0b9fc
Sun, Apr 23, 2023

YOU! HACK! MY! REFRIGERATOR!!! 😡

New comments are disabled for this page.
cd3ece957f
SHA256
Sun, Apr 23, 2023

DeSnake never died in jail. There was talk of an autopsy but it was never done, they didn't even send his body to Canada. The REAL DeSnake Alexander reopened AB but something happened.

New comments are disabled for this page.
2a016af8ce
Angry Clit Spasm
Fri, Apr 28, 2023

Good heavens my brothers in Christ. Have thou misplaced all of thine brain cells???

New comments are disabled for this page.
da786d3f9b
da786d3f9b
Mon, May 1, 2023

Yes

New comments are disabled for this page.
fb6cf1e215
fb6cf1e215
Fri, May 5, 2023

wth

New comments are disabled for this page.
2c6bc3cee1
2c6bc3cee1
Fri, May 5, 2023

brothers and sister, I would like to invite you to Islam. Please accept Islam I don't want this so many people to go to hell.

New comments are disabled for this page.
ed482baf26
ChatTor
Sat, May 6, 2023

http://chattorwozgwecrzzbchyhvxiyomny6jn4ac2njc22ozgwg42bhtupad.onion/chat

New comments are disabled for this page.
a664ffefcc
a664ffefcc
Tue, May 9, 2023

Hallo the first negga was a mix bitwin a Sudanese and a chimpanzee real facty

New comments are disabled for this page.
f873af3e2d
f873af3e2d
Tue, May 9, 2023

youtube link

New comments are disabled for this page.
fb61ea713b
fb61ea713b
Sun, May 21, 2023

hii

New comments are disabled for this page.

New comments are disabled for this page.
Comments hidden
Sponsored by you!
Donate Mirrors PGP Canary Tor I2P Bible RSS Contact