Security News > 2023 > January > The FBI Identified a Tor User
According to the complaint against him, Al-Azhari allegedly visited a dark web site that hosts "Unofficial propaganda and photographs related to ISIS" multiple times on May 14, 2019.
In virtue of being a dark web site-that is, one hosted on the Tor anonymity network-it should have been difficult for the site owner's or a third party to determine the real IP address of any of the site's visitors.
It found Al-Azhari allegedly visited the site from an IP address associated with Al-Azhari's grandmother's house in Riverside, California.
The FBI also found what specific pages Al-Azhari visited, including a section on donating Bitcoin; another focused on military operations conducted by ISIS fighters in Iraq, Syria, and Nigeria; and another page that provided links to material from ISIS's media arm.
Without the FBI deploying some form of surveillance technique, or Al-Azhari using another method to visit the site which exposed their IP address, this should not have been possible.
It's unlikely that the FBI uses the same sorts of broad surveillance techniques that the NSA does, but it's certainly possible that the NSA did the surveillance and passed the information to the FBI. Tags: dark web, de-anonymization, FBI, hacking, NSA, privacy, surveillance, Tor.
News URL
https://www.schneier.com/blog/archives/2023/01/the-fbi-identified-a-tor-user.html