Contact FAQ

🎣 Phishing Prevention & Detection

Learn to identify and avoid phishing attempts targeting darknet users.

⚠️
Phishing is the #1 Threat

More users lose funds and accounts to phishing than any other attack. Fake market sites look identical to real ones but steal your credentials and funds.

How Phishing Works

  1. Attacker creates a fake site that looks identical to the real market
  2. Fake links are spread through forums, messages, and search results
  3. Victim enters credentials on the fake site
  4. Attacker captures credentials and logs into real market
  5. Attacker steals funds, changes password, locks out victim

How to Identify Phishing Sites

🚨 Red Flags

  • URL doesn't match verified links
  • Site looks slightly different than usual
  • Unusual errors or slow loading
  • Login always "fails" (capturing retries)
  • Asks for unusual information
  • No working 2FA challenge

✅ Safety Signs

  • URL matches your bookmarked link exactly
  • PGP 2FA challenge works normally
  • Site behavior is consistent
  • Login works on first try (if creds correct)
  • Balance and history are correct

Protection Strategies

1. Bookmark Verified Links

Save verified mirror links to your Tor Browser bookmarks. Only access markets through these bookmarks—never through links in messages or search results.

2. Enable PGP 2FA

This is your ultimate protection. Even if you enter credentials on a phishing site, attackers can't complete login without your private key.

Set Up 2FA →

3. Verify PGP Signatures

Official mirror lists are PGP signed. Verify the signature before trusting new links.

4. Check Multiple Sources

Verify links from multiple trusted sources before using them. If a link only appears in one place, be suspicious.

5. Never Click Links in Messages

Don't click any links sent to you via market messages, email, or forums. Always type or use bookmarks.

What to Do If You've Been Phished

  1. Act immediately - Time is critical
  2. Access real market via verified bookmark
  3. Change password immediately
  4. Withdraw any funds to personal wallet
  5. Check order history for unauthorized activity
  6. Update your PGP key if you shared your private key
  7. Warn others about the phishing link

Common Phishing Tactics

Tactic How to Spot
Similar URLs Check every character - phishers use lookalikes (0 vs O, l vs I)
Fake mirror lists Verify PGP signatures, check multiple sources
"Support" messages with links Real support never sends login links
Fake login errors Site always says "wrong password" to capture retries
SEO manipulation Never use clearnet search for onion links

Stay Safe: Use Our Verified Mirrors

We monitor and verify all Catharsis Market links. Bookmark our mirror page for safe access.

View Verified Mirrors
🔑

2FA Setup

Ultimate phishing protection
🛡️

Security Tips

Complete security checklist