Darknetlive

That's All Folks: Versus Market is Retiring

After several days of consideration, the administrators of Versus Market decided to retire.

In a post on May 18, 2022, AlphaBay administrator DeSnake published an announcement on Dread about “security issues on Versus.” DeSnake then worked with the Dread user /u/threesixty to verify the existence of the vulnerability discovered by the hacker.

A picture of WilliamGibson, a Versus staffer, announced the market's shutdown on Dread.

WilliamGibson, a Versus staffer, announced the market's shutdown on Dread.

DeSnake’s explained the exploit in his Dread post:

“The exploit is extremely simple but compromising. It allows for full access to the underlining file system on the server. This include information within the /etc/ directory as well as wallet directories. It is a full information compromise of the system. Everything to the server’s IP address, to the backup of the database in the admin home folder, to the wallet files themselves. I am able to traverse nearly the entire file system with web server level access. There is no jail, WAF, and minimal care to limit the information disclosure in the event of a web server compromise. I am able to view the history of IP addresses which have previously accessed the server.”

Paris, the co-administrator of Dread, later verified the exploit’s existence.

The market has been unreachable since DeSnake published the disclosure on Dread, if not earlier (the market’s backend returned a “white screen of death” after some of DeSnake’s testing). On May 22, 2022, Versus Market staff member /u/WilliamGibson announced the market’s permanent retirement. In the announcement, WilliamGibson wrote that Versus Market’s staff spent several days analyzing the severity of the vulnerability.

“After an in-depth assessment, we did identify a vulnerability which allowed read-only access to a 6+ month old copy of the database as well as a potential ip leak of a single server we used for less than 30 days,” WilliamGibson wrote.

The market wanted to contest some of the claims made about the vulnerability. Specifically, WilliamGibson wrote, “there was no server pwn and users/vendors have nothing to worry about as long as standard and basic opsec practices have been utilized (for example, PGP encryption).” Members of the market’s team feel as if a “clear agenda” existed in the way people handled the discovery and disclosure of the vulnerability.

A picture of Versus Market is the most popular Western marketplace | Picture: @DarkDotFail

Versus Market is the most popular Western marketplace | Picture: @DarkDotFail

Others on Dread have questioned DeSnake’s involvement in the disclosure, pointing out that AlphaBay inevitably benefits from the demise of any competition. One Dread user asked, “all good intentions aside. Isn’t it an advantage to eliminate your competition and gain more users for your own marketplace?”

DeSnake answered the question, stating, “yes it is and we do not hide that. As I explained in several posts some minutes ago the effect of such a vulnerability is much, much bigger to all marketplaces and the scene as a whole and while we do benefit from it, it is a small if not insignificant compared to what could have actually happened.”

Paris provided a similar answer and suggested that law enforcement had already compromised the server unless they were “sitting on their hands.”

The sentiment of users commenting on posts about the vulnerability appears to be generally balanced. Although many are skeptical of the way the motivations for DeSnake’s disclosure, others thanked the parties involved for “not outright exposing the exploit and/or leaking the database.” (DeSnake claimed that he did “not leak the database or [steal] any coins.” The market recovered from a Bitcoin theft once before when hackers drained Versus’ escrow wallet).

A picture of DarkDotFail claims the market had “a troubled history.”

DarkDotFail claims the market had “a troubled history.”

WilliamGibson’s retirement post highlighted the market’s climb to the top.

“We built Versus from scratch and ran for 3 years. We built a community and even became the #1 DNM when we never intended for that to be the goal. At a certain point, there is no further way up to go, only down, and in this business it is best to not make decisions out of pride. While we are not ending on the note that we would have liked, we hope that the truth about the actual scope of the vulnerability, combined with the impact we have had on the community, leaves users remembering Versus fondly for years to come. Versus Market has officially retired and we thank you for your support and being part of something that hopefully defined the future of DNM’s.”

And he closed by thanking the community and telling Versus Market vendors that he will provide a link where they will be able to access their transactions without a locktime.

Signed Message from WilliamGibson
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512



Dear Community,

There is no doubt that there has been a lot of concern and uncertainty regarding Versus in the last few days. Most of you that have come to know us have rightfully assumed that our silence has been spent working behind the scenes to evaluate the reality of the proposed vulnerability. After an in-depth assessment, we did identify a vulnerability which allowed read-only access to a 6+ month old copy of the database as well as a potential ip leak of a single server we used for less than 30 days. We take any and every vulnerability extremely seriously but we do think that its important to contend a number of the claims that were made about us. Specifically of importance: there was no server pwn and users/vendors have nothing to worry about as long as standard and basic opsec practices have been utilized (for example, PGP encryption)
In many ways, we are glad to see the community coming together to improve everyone's security, this was our dream from the beginning with Versus, though we will say that there was a clear agenda behind the way this was originally handled, but we leave you to draw your own conclusions
Once we identified the vulnerability, we were posed with a fork in the road, to rebuild and come back stronger (as we had done before) or to gracefully retire. After much consideration, we have decided on the latter. We built Versus from scratch and ran for 3 years. We built a community and even became the #1 DNM when we never intended for that to be the goal. At a certain point, there is no further way up to go, only down, and in this business it is best to not make decisions out of pride. While we are not ending on the note that we would have liked, we hope that the truth about the actual scope of the vulnerability, combined with the impact we have had on the community, leaves users remembering Versus fondly for years to come. Versus Market has officially retired and we thank you for your support and being part of something that hopefully defined the future of DNM's.

For all our vendor:
We will soon publish a link where you guys can get your transactions without the locktime. No need to wait 90 days.
It was a good run and I would like to thank you all.

All the best,
William Gibson

-----BEGIN PGP SIGNATURE-----

iQKTBAEBCgB9FiEEFAl5ki+ljOnGotMlXFDURnuuQqEFAmKKRLJfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDE0
MDk3OTkyMkZBNThDRTlDNkEyRDMyNTVDNTBENDQ2N0JBRTQyQTEACgkQXFDURnuu
QqHryQ/+IAUfX7anIWAESD5AIPz/gBt9ufFovPHWl13SCDghpgt9v0Zu6zv03WSK
1e/RlVUTXfAfMdyvlXCMy6ItdtEsQi4dBHzy/exgr9Obrg0NLu4ie1poyp7c3+Vk
h3Ok6PX2FcCSKMNTZUYa0z7ycHK+NOop+IfG/MErPVRx0eVMvjCQRw3+QMgVm75P
NqnCh1bdesOReMAbnMrdqTLWTfgIxAXJ4KMhxbawBx1SWg+34wBcHbTjGh/SIlHI
vTBN6ROt3bxc6M+8JPxAMb9+Ai1h1rcqgYy+T3wW3bkP97eEtbkOI4jKwsUhyiLQ
Zoq9PNkzRRIiyxzttdBB49tWGUewGKTgnWlmQc4LEcMGK13jAu0uJ2r+wsq24Kl3
YuQjzkN8bZCLqFyy+Zdu1uJszER1RGSFTk6QtMBtztlNHGX7XpDQXbz+4OXhwCzj
ag58VyosXNI51LPEuzNlNWszE6r+HuS0Jcjh6ImsMYL6NlhmZ+uz2zWVXO1xL90O
eTx4Zb3kCWHSppUZJivnEd6I3tvgE1pfkP9y2R9RmcWif9JPsnNwCsc3pzStrPAE
c26wWvrKeEU5Gr+5PYMY3YDciTSUnER/k8/s9bCUm7v+NkIyJAOb2fNOmL8gSl8e
pQ0kYSAedfNSiQptiK6lEK+0d5oDy99MTxWGbHNY2Y+akisl/v4=
=QV1O
-----END PGP SIGNATURE-----

dreadytofatroptsdj6io7l3xptbet6onoyno2yv7jicoxknyazubrad.onion/post/d492c9d27bceb87fed69

Comments
Do you really want to comment here? not rules
712cbdd8
57d52b40 Mon, May 23, 2022

williamgibscum and anushuxley are still phishing dumb users all the best to them based archetyp will be 1#
#archehype

2fbbb234
89c6e1f0 Tue, May 24, 2022

YOSEMITE JUST ANNOUNCED NIGGERS TONGUE HIS ANUS

161fb39e
1b913380 Mon, May 23, 2022

versus admins were teenagers pretending to be intelligent their names were made after famous novelists to try and give off the feeling they were smart and their site had the lingo of 2008 gamers faggot speak good riddance imagine all the vendors that are rotting in prison because of them and we will never know how many got caught because of le keeping it secret who needs law enforcement when you have incompetent man children like williamgibson i hate alphabay but at least they got rid of the trash

7d3c03fb
466e3150 Mon, May 23, 2022

You sound like an angry child that got banned from their market. I was a vendor on versus and it was the best experience I had in years. They were always fair and honest. The interface was just perfect. I never lost a single dollar. Not even now! I downloaded all locktime transactions every day and I can get my money in a couple of month. All other markets fucked me up big time and stole my money. I can only say thank you william and the rest of the team. It was a pleasure to sell on your market! You deserve the retirement!

29fdaae0
9b2525e0 Wed, May 25, 2022

Not to mention the silly childish seeds for accounts: ‘cunt piss ass dick boobs’

Good riddance in dead

e0921c5c
10b9a900 Thu, May 26, 2022

u might be on to something about the darknets

hmmmmmmmm
now, do the ponzi, I mean crypto

45ec057c
4d05bfa0 Mon, May 23, 2022

Thanks DNL, squaring in big time there, finally the official statement. My thoughts: it was indeed a read only vulnerability, allowing LE, DeSnake, 666ty and unknown others to access the market databases since the creation of the website, kind of hard to put a take down banner on a vulnerability like that… So why did they shut down if it wasn’t a critical vulnerability? IP addresses are a bitch of read only information… 🖼

bf19ff8a
c0bcbec0 Mon, May 23, 2022

and I’m vewy, vewy sorry for making fun of all the blacks, I would not laugh much without black folks life would be boring ✌🏿

672d8a11
d0855ae0 Mon, May 23, 2022

This 1z for you DeSnake, whoever you are, if you know what I’m saying, you are a person and the syntax of your sentences would lead me to believe you are a highly educated American male in his 40z. I think we all admire you a little bit, I mean you should be in a Hollywood movie, that you survived AB1.0 and came back not motivated entirely by money, it would seem, I wonder how good of friends you were with A02kay… amazing time to wittiness you do this, I wish you all the best in whatever your endeavors in life may be, it’s far past the streets hahaha do you worry one day they will catch you, amazing courage to say the least…

f998942c
6e0295d0 Mon, May 23, 2022

DeSnake = 👽

206beba7
fd2ec730 Mon, May 23, 2022

Best market I’ve ever seen! I don’t belive the FUD. This so called “obvious” vulnerability been there for 3+ years and nobody noticed? Very unlikely no? More likely paris in desnakes pocket.

6367a6b7
41f83ef0 Tue, May 24, 2022

My initial thoughts as well, a very concerning and valid point 🖼

af933d17
9bf30ed0 Mon, May 23, 2022

Versus chads.. its over…

20aedb0e
be01ee10 Mon, May 23, 2022

Versus chads.. its over…

d2766326
cdc5b920 Tue, May 24, 2022

I think that right now the best option is Bohemia. they are on the SuperList and have all the reputable and established vendors.
They also kind of Low Key type which makes them less of a target for hackers and/or Law Enforcement.

[url=http://bohemiaobko4cecexkj5xmlaove6yn726dstp5wfw4pojjwp6762paqd.onion/member.php?action=register&ref=B9QXY4G0Cq]Verified link from Bohemia[/url]

http://bohemiaobko4cecexkj5xmlaove6yn726dstp5wfw4pojjwp6762paqd.onion/member.php?action=register&ref=B9QXY4G0Cq

(This is an affiliate link. It is a verified link directly from Bohemia. I am just trying to help the people while promoting a Market that is in my opinion the best option right now)

Also the staff is real active and efficient in resolving disputes if ever there is one. Something with this guys just makes me feel safer for...

536da266
49980b20 Tue, May 24, 2022

I’ve verified the vulnerability myself the moment I saw Sixty post it, and I can tell everyone it was indeed read-only. But like any compromise it was a foothold within the system which could have lead to further privilege escalation.

While I never personaly used Versus, they were indeed one of the few markets who were actually transparent. And thay can’t be said for any other operation, they had a good run, let their users finalize transactions and withdraw coins. All in all an end of an era.

20ffe4eb
92b74da0 Tue, May 24, 2022

“Unless the international po po were sitting on their hands, data was leaked.”
Let’s hope everyones data from Versus isn’t sitting on an FBI server right now… damn. The law is always 3 steps behind though, so maybe not.

The markets are only splintering further. Cannahome is gone, Versus, and WhiteHouse. The game is in a tail spin right now. There’s vendors that I’ve totally lost contact with in the past 6 months that I’d love to find again. Never had this problem.

Fuck mane

4d35d2bd
b9e20e80 Tue, May 24, 2022

nah desnake is doing good moves paris has nothing to do with all you can see versus admin confirm the exploit i hope no le has the info or we are all fked

3a48a4b8
50025d30 Tue, May 24, 2022

t-the vulnerability wasnt critical and le dont have anything t-thats why were are shutting down forever

absolute state of versus junkies

thank you for your support and being part of something that hopefully defined the future of DNM’s.”

defined literally nothing but an exposed ip and shit support what a delusional post

f0280f4e
c964df50 Tue, May 24, 2022

I needed a hacker for a very and strict and confidential job, he did it so well without any comebacks or tracebacks was able to get all my crypto . For those in need of a qualified Black Hat hacker who shows proof before hack not on the clear net wizcyber on Wickr (might have to download wicker), or  Do mention Sally as he can be TOO WARY!

7ee9726a
16168cd0 Tue, May 24, 2022

OYYY VEY VERSUS HAD 4 GORILLION USERS ALL WIPED OUT IN THE SHOAH NEVER FORGET GOY desnake stole all our shekels because he exposed our exploit that was being used by police it is his fault we closed down goyim not our fault we dont know how to code OYYYY VEEEY DESNAKE IS PUTTING ME IN THE GAS CHAMBER AS I TYPE THIS HELLLLLP THE ANTISEMITISM

7f472b2f
e5ea8440 Tue, May 24, 2022

do we know who the hacker was/is? Law Enforcement? If so, do we change names and addresses again?

a8fb0775
8a9d8850 Tue, May 24, 2022

Desnake biggest legend of dnm history

9f6812ab
eb411550 Thu, May 26, 2022

Didn’t look so legendary last summer when he went crying to dread about mr_white taunting and ddosing him into oblivion both over tor and his precious i2p eeps. It was gory.

Mr_White had him on his knees begging for mercy. Look it up. Legendary security my ass. White is King.

698a3fe0
e67db0a0 Tue, May 24, 2022

Desnake is one of the best security expert on deep web that i known. Honor and respect for an real ethical hacker :)

6389e973
5f4c17a0 Tue, May 24, 2022

THANK GOD VENDORS GET THEIR TX SCRIPTS

0d200842
e41af590 Tue, May 24, 2022

To be honest, I’ve used Versus for a couple of years now and enjoyed their services but it took a while because Multi-Sig wasn’t that easy for a lazy beginner like me to use as I was barely getting the hang of encryption/decryption/signatures and what not. After that learning curve, it wasn’t too bad but the lag time on the market wasn’t that great as well. Nonetheless, I was able to order successfully a few times and after getting used to that, it closed down. Luckily I still know my favorite vendor’s private channel to order via e-mail (ForcesOfNature2@riseup.net & Firebunnyusa@lelanto.net). You can validate their public PGP key with the same one from their CannaHome & Versus channels.

6fed7427
09956f30 Tue, May 24, 2022

Been a sql and server admin and coder for years. Quite difficult to understand what kind of exploit they had and why it couldn’t easily be fixed. To be honest to blame such a fundimental issue like that is kinda sus if you ask me. I suspect the fact they shutdown (assuming this is true) and didn’t fix this supposed bug is the bigger bit of information. With that in mind what does this mean? I think it means they know they were compromised and shut down before something worse happened. Or perhaps it was something beyond the scope of fixing but I do find this quite hard to believe.

30786ee3
486dcea0 Tue, May 24, 2022

Any way to get a 2/3 multisig transaction back then ?

dc4aff9d
57279d60 Tue, May 24, 2022

Yes, get the 3rd signature…

796ca8b1
61a89280 Tue, May 24, 2022

Asap is ok hopefully that doesn’t go down next. So far I’ve found my main bud vendor on there. I really like ld versus it sucks… Anyways I hope that it’s not a big huge deal I mean I always encrypted my addy and I only got small stuff mainly thc products no more than a half p at a time. If the feds do have a he data then oh well I guess they know I smoke hella weed lololol

e0aab4a6
691cd620 Tue, May 24, 2022

I dont know. I had something marked shipped on the 19th and it never made it. I dont believe in coincidences.

873ce0de
9f676440 Wed, May 25, 2022

I needed a hacker for a very strict , confidential job, he did it so well without any tracebacks was able to get my crypto . For those in need of a qualified Black Hat hacker shows proof before hack not on the clear net wizcyber on Wickr (have to download wicker), or  Do mention Sally as he can be TOO WARY!

4f69dabc
60b37f80 Wed, May 25, 2022

shit way to promote yourself get a life

3072aa5a
61c26ce0 Thu, May 26, 2022

total really internet story that is totally real

ef35ed69
3330bcb0 Fri, May 27, 2022

sure thing task force
for the street rats who don’t know wickr is backdoored for LE as confirmed by the 2014 on-wards revolutions

84e03f63
6e0757d0 Wed, May 25, 2022

So… How do the customers go about contacting the vendors if we never received our orders? They aren’t creating an open p2p option for vendors-customers?

a9a2c996
69f7bac0 Thu, May 26, 2022

bless u, you make my job so much easier

“First rule in government spending: why build one when you can have two at twice the price?”

d03e53e5
c44628b0 Thu, May 26, 2022

Now the next targeted market is alphabay 2.0 no one knows how long it will survive.

9520975a
92bda3b0 Fri, May 27, 2022

So much for the timelock release whoops

909383d9
1fc92cf0 Sun, May 29, 2022

Versus felt very amateurish from the beginning. Just glad I didn’t lose any money this time. Does seem weird that they just shut down when someone found a huge bug. where the fuck did they get the code anyways?

fe427ae3
dc29f080 Tue, May 31, 2022

probably from stackoverflow. i really do hate those kind of retards, that get bad code and stick it to their website without checking it. the fact that the backend was php doesn’t helps

b0824e69
b5cdf8f0 Thu, Jun 9, 2022

what do they mean they’ll released a link for vendors to withdraw their time-locked money earlier? Has it been released?

a57a1655
4b8531e0 Sun, Jun 12, 2022

It’s simple. They retired.

New comments are disabled after ten days in an attempt to limit spam.