The attack appears to have indiscriminately targeted several users at once and not just those suspected of criminal activity, Tor said in a 11 November post adding there is no indication that a warrant was used. “Apparently these researchers were paid by the FBI to attack hidden services' users in a broad sweep, and then sift through their data to find people whom they could accuse of crimes,” the post said.
Tor said in the post that it encourages independent research on its software and network, but this attack crossed the line between research and endangering innocent users.
Vice's Motherboard reported that court documents revealed an academic institution, believed to be CMU's Software Engineering Institute, assisted the FBI in the arrest of a Silk Road 2.0 staff member as well as child porn suspects.
The institution reportedly provided the FBI with IP addresses as well as the servers of several dark web sites.
SCMagazine.com reached out to CMU for a comment to which they declined.
SCMagazine.com has attempted to contact Tor for comment but they have yet to respond.
UPDATE: An FBI spokesperson contacted SCMagazine.com and denied the claims that it paid CMU to hack into Tor.