German authorities shut down the server infrastructure for the Russian darknet marketplace Hydra, seizing €23 million (~$25.2 million USD) worth of Bitcoin in the process, Germany’s Federal Crime Police Office (BKA) announced on Tuesday (via Bleeping Computer).
Hydra is a large marketplace on the dark web that serves as a hub for drugs, stolen credit card information, counterfeit bills, fake documents, and other illegal goods or services. The market primarily caters to criminals in Russia and surrounding nations. “Treasuremen,” or dealers connected with the site, push drugs throughout the region by hiding them in geo-tagged pickup locations.
With the shutdown of the German-based server, authorities are now launching an investigation into the “unknown operators and administrators” of Hydra, whom they suspect of selling narcotics and engaging in money laundering. German authorities say they have been investigating the marketplace with the help of the US since August 2021. The BKA told The Verge that no arrests have been made as of yet.
Although Hydra is known for aiding in the sale of narcotics, a report from risk intelligence organization Flashpoint (via Wired) points to cryptocurrency laundering as another growing trend. Cybercriminals could purchase cryptocurrency from other sellers in exchange for rubles, and then receive their cash through payment apps like YooMoney, Tinkoff, or QUIWI. Other crypto launderers would opt for a delivery method similar to the one used for drugs — a courier would bury money in a discrete location, which the customer would later dig up.
As noted by Wired, cryptocurrency investigation firm Chainanalysis found $200 million in stolen cryptocurrency floating around on the platform in 2021 and early 2022, including $5 million linked to fraud, $4 million linked to ransomware, and $4 million from sanctioned sources. About $2 billion in transactions in total came from “risky” sources.
In response to the shutdown, the US Department of the Treasury’s Office of Foreign Assets Control announced that it has sanctioned Hydra and Russian cryptocurrency exchange Garantex. The US is also working to identify over 100 cryptocurrency addresses with ties to the illegal marketplace.
“Our actions send a message today to criminals that you cannot hide on the darknet or their forums, and you cannot hide in Russia or anywhere else in the world,” Secretary of Treasury Janet L. Yellen said. “In coordination with allies and partners, like Germany and Estonia, we will continue to disrupt these networks.”
With about 17 million customer accounts and 19,000 sellers, Germany’s BKA and Central Office for Combatting Cybercrime (ZIT) say Hydra has the highest turnover rate out of any illegal market in the world, estimating a turnover of about €1.23 billion (~$1.35 million USD) in 2020 alone. German authorities note that cryptocurrency transactions on Hydra are especially hard to track due to a crypto-concealing service called the Bitcoin Bank Mixer.
Last year, German authorities shut down the darknet marketplace DarkMarket, which had nearly half a million users at the time. Authorities across the world have long been trying to crack down on illegal marketplaces, taking down Silk Road, Wall Street Market, and AlphaBay over the course of several years.
Update April 5th, 6:25PM ET: Updated to add context surrounding money laundering on Hydra from Flashpoint report.
Source: https://www.theverge.com/2022/4/5/23011377/germany-servers-russian-darknet-site-hydra-bitcoin