Phishing Prevention Guide

How to identify and avoid fake Darkmatter sites

Note: More funds are stolen via phishing sites than all other attacks combined. Fake Darkmatter clones steal login credentials and cryptocurrency. This guide teaches you to NEVER fall victim.

What is Phishing?

Phishing is when attackers create fake websites that look identical to real Darkmatter Market to steal your credentials, cryptocurrency, or personal information.

⚠️ Critical Reality:

95% of darknet market account compromises are due to phishing. Learn to verify mirrors via PGP signatures on Dread forum. NEVER trust search engine results or random links.

Verification is simple: Access Dread forum → Find /d/DarkMatter official subdread → Verify PGP-signed mirror list from admin. Only mirrors in PGP-signed posts are authentic.

How to Verify Real Darkmatter Mirrors

Always verify mirror URLs via PGP signature verification on Dread forum before accessing Darkmatter.

  1. Access Dread forum via Tor
  2. Navigate to /d/DarkMatter (official Darkmatter subdread)
  3. Find pinned post: "Official Darkmatter Market Mirrors"
  4. Copy PGP-signed message
  5. Import Darkmatter admin's PGP public key
  6. Verify signature using Kleopatra
  7. If signature is VALID → URLs are authentic
  8. Bookmark verified .onion URLs immediately

Why This Works: Phishing sites cannot create valid PGP signatures without admin's private key. Signature verification is mathematically unbreakable proof of authenticity.

Red Flags: How to Spot Phishing Sites

  • 🚩 Wrong .onion URL (even one character different)
  • 🚩 No PGP 2FA requirement after login
  • 🚩 Design differences, typos, broken layout
  • 🚩 Missing anti-phishing code (if you set one)
  • 🚩 Urgency messages ("account will be deleted!")
  • 🚩 Requests seed phrases or private keys
  • 🚩 Direct deposit address shown
  • 🚩 Password manager doesn't auto-fill

What to Do If You Entered Credentials on Phishing Site

Note:

  1. Minute 1: Access real Darkmatter, change password, withdraw all funds
  2. Minute 5: Rotate PGP keys, enable all security features, cancel pending orders
  3. Minute 15: Scan device for malware, clear browser data, check active sessions
  4. Hour 1: Bookmark verified mirrors, set up anti-phishing code, report phishing site

Best Practices Summary

DO:

  • Verify ALL mirror URLs via PGP signatures on Dread
  • Bookmark verified URLs immediately
  • Use password manager bound to exact .onion domain
  • Enable anti-phishing code in Darkmatter settings
  • Check URL carefully before each login
  • Look for PGP 2FA requirement

DON'T:

  • Trust Google/search engine results
  • Click links in DMs, Telegram, or YouTube
  • Type .onion URLs from memory
  • Scan QR codes for market access
  • Enter credentials if anti-phishing code is missing
  • Trust "official" Telegram accounts (all fake)

Related Security Guides

Official Mirrors

Verify current Darkmatter .onion URLs

 Security & OPSEC

Complete operational security guide
← Back to Wiki Hub