The recent success of Western government agencies such as the US Federal Bureau of Investigation (FBI), who have taken down prominent Dark Web forums, are being radically undermined by China’s welcome of Western cybercriminals. The forums Deepmix and Chang’an now offer an effective cloak of anonymity for the world’s cybercriminals and ransomware gangs.
According to recent research by cybersecurity company Cyberint: “The Chinese Dark Web has seen a rise in the popularity of underground trading forums with two platforms, Deepmix and Chang’an, leading the way. Since their respective launches, these forums have gained significant traction among traders and buyers looking for a secure and anonymous platform to conduct business.”
“Both forums provide the world’s cybercriminals with the offer of comprehensive features and support for multiple cryptocurrencies, making it easier for users to trade with one another. Western agencies’ lack of regulation and oversight on the Chinese dark web trading market offers a “safe” ecosystem for Western Threat Actors to carry out their activities,” adds Cyberint.
The FBI, the Pentagon, and the British security services were all unavailable for comments. It is hardly surprising, however, that the new Chinese safe haven for cybercriminals may have caught Western security agencies unawares, as it drastically reduces the progress made over the past 18 months in bringing cybercriminals to justice. During 2022 and 2023, Western authorities brought down multiple prominent dark web forums, including RaidForums in April 2022, BreachedForums in March 2023, and Genesis Marketplace in April 2023.
“Furthermore, in the past year, Western law enforcement agencies have managed to arrest major cyber criminals from both the West and Russia (albeit not on Russian soil), with the seizure of Dark Web forums and analysis of users’ data playing a crucial role in these arrests,” said Cyberint.
However, according to Cyberint, China’s welcoming of Western cybercriminals into its Dark Web could easily backfire: “The monitoring on Western Forums could be the catalyst for a shift of non-Chinese speakers towards the Chinese dark web. This shift could lead to a change in which victims are being targeted, with an increasing likelihood of Eastern victims being targeted.”
China’s Dark Web forum “Deepmix,” formerly called the Chinese Darknet Forum, began in 2013. In 2015-2016, the forum was restructured as a Dark Web marketplace in response to user demand for Bitcoin payment options. Since its start, the site has focused on user anonymity using TOR, also ensuring users’ financial security by implementing measures such as coin mixing and dispute resolution mechanisms.
Newcomer Chang’an is a Chinese Dark Web market that was launched only last year. The entity received positive user reviews, credibility, and potential for continued development. In addition to its user-friendly platform, Chang’an has an official anonymous Telegram group, “@cabyc“, which started in the same year and has become popular among cybercriminals targeting the West.
