Threat Intelligence

12:00 AM
Dark Reading
Dark Reading
Products and Releases

International Consortium Launches to Prevent Criminal Use of Dark Web and Virtual Currencies

Seven European countries launch project to curtail criminals and attackers from using blockchain technology to avoid law detection.

Vienna - A group of 15 consortium members from seven European countries has initiated this week a new project to curtail criminals and attackers from using blockchain technology to avoid law detection, while at the same time respecting the privacy rights of legitimate users. Blockchain technology is an electronic ledger under decentralized control, which allows it to evade traditional investigative measures.

The best-known application of blockchain technology is Bitcoin, which has many legitimate uses but is also used for criminal purposes in the so-called dark web (i.e., the part of the internet that is beyond the reach of Google and other search engines). The attackers who froze computers in 150 countries last Friday, 12 May, demanded a ransom paid in Bitcoin.

The researchers are in a consortium undertaking a three-year, €5 million project, funded by the European Union aimed at developing technical solutions for investigating and mitigating crime and terrorism involving virtual currencies and underground market transactions.

The researchers, including four law enforcement agencies (LEAs) and INTERPOL, aim to develop and implement tools to reveal common characteristics of criminal transactions, detect anomalies in their usage, and identify money-laundering techniques. The researchers will also conduct training activities in order to develop skills and knowledge among EU law enforcement agencies. As part of their project, which is called TITANIUM (Tools for the Investigation of Transactions in Underground Markets), the researchers plan to test and validate their tools and services on the premises of the LEAs to assess the effectiveness and overall impact of the project results.

Project co-ordinator Ross King, a senior scientist at the AIT Austrian Institute of Technology GmbH, said, “Criminal and terrorist activities related to virtual currencies and darknet markets evolve quickly and vary in technical sophistication, resilience and intended targets.”

To counter such activities, Dr King said it was necessary to develop efficient and effective forensics tools enabling the reasonable use of different types of data from different sources including virtual currency ledgers, online forums, peer-to-peer networks of underground markets, and seized devices.

Dr. King also emphasized that the tools developed within the TITANIUM project will respect individual privacy and other fundamental rights.  "The consortium will analyze legal and ethical requirements and define guidelines for storing and processing data, information, and knowledge involved in criminal investigations without compromising citizen privacy."

In addition to the AIT Austrian Institute of Technology GmbH, the partners in the TITANIUM consortium are:

Bundeskriminalamt (Germany)

Coblue Cybersecurity (Netherlands)

Countercraft S.L. (Spain)

dence GmbH (Germany)

Universität Innsbruck (Austria)

INTERPOL (International Criminal Police Organization)

Karlsruhe Institute of Technology (Germany)

Ministry of the Interior (Austria)

Ministry of the Interior (Spain)

National Bureau of Investigation (Finland)

TNO (Netherlands)

Trilateral Research (UK)

University College London (UK)


Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
13 Russians Indicted for Massive Operation to Sway US Election
Kelly Sheridan, Associate Editor, Dark Reading,  2/16/2018
From DevOps to DevSecOps: Structuring Communication for Better Security
Robert Hawk, Privacy & Security Lead at xMatters,  2/15/2018
Facebook Aims to Make Security More Social
Kelly Sheridan, Associate Editor, Dark Reading,  2/20/2018
Register for Dark Reading Newsletters
White Papers
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
How to Cope with the IT Security Skills Shortage
Most enterprises don't have all the in-house skills they need to meet the rising threat from online attackers. Here are some tips on ways to beat the shortage.
Flash Poll
[Strategic Security Report] Navigating the Threat Intelligence Maze
[Strategic Security Report] Navigating the Threat Intelligence Maze
Most enterprises are using threat intel services, but many are still figuring out how to use the data they're collecting. In this Dark Reading survey we give you a look at what they're doing today - and where they hope to go.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.